Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'56 
b'ooooooo_q'50 
b'jon_bottarini'49 
b'haxta4ok00'48 

the unofficial HackerOne disclosure timeline.

X
b'curl' disclosed a bug submitted by b'w0x42' 
b'CVE-2023-38546: cookie injection with none file'
11 Oct 2023 timeline
b'curl' disclosed a bug submitted by b'raysatiro' 
b'CVE-2023-38545: socks5 heap buffer overflow'
11 Oct 2023 timeline
b'Stripe' disclosed a bug submitted by b'zerodivisi0n' 
b'Limited path traversal in Node.js SDK leads to PII disclosure'
10 Oct 2023 timeline
b'PortSwigger Web Security' disclosed a bug submitted by b'mattaustin' 
b'RCE of Burp Scanner / Crawler via Clickjacking '
10 Oct 2023 timeline
b'Cosmos' disclosed a bug submitted by b'strikeout' 
b'RCE and DoS in Cosmovisor'
10 Oct 2023 timeline
b'On ' disclosed a bug submitted by b'mr_sparrow' 
b'No Rate Limit in Login Page'
09 Oct 2023 timeline
b'Acronis' disclosed a bug submitted by b'und3sc0n0c1d0' 
b'Stored XSS in plan name field (Acronis Cyber Protect)'
09 Oct 2023 timeline
b'IRCCloud' disclosed a bug submitted by b'lotsofloops' 
b'XSS from Mastodon embeds'
09 Oct 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'haxatron1' 
b'(CVE-2023-32006) Permissions policies can impersonate other modules in using module.constructor.createRequire() '
08 Oct 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'marshallofsound' 
b'Context isolation bypass via nested unserializable return value'
07 Oct 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'haxatron1' 
b'(CVE-2023-32003) fs.mkdtemp() and fs.mkdtempSync() are missing getValidatedPath() checks'
07 Oct 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'haxatron1' 
b'(CVE-2023-32004) Permission model bypass by specifying a path traversal sequence in a Buffer'
07 Oct 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'tniessen' 
b'OpenSSL engines can be used to bypass and/or disable the Node.js permission model'
07 Oct 2023 timeline
b'WordPress' disclosed a bug submitted by b'tanvir0x' 
b'Previously created sessions continue being valid after 2FA activation'
07 Oct 2023 timeline
b'HackerOne' disclosed a bug submitted by b'imranhudaa' 
b'Draft report exposure via slack alerting system for programs'
06 Oct 2023 timeline
b'LinkedIn' disclosed a bug submitted by b'mainteemoforfun' 
b'[ADMIN FEATURE ACCESS] Knowing The Competitors analytics of any company '
05 Oct 2023 timeline
b'Informatica' disclosed a bug submitted by b'mtk0308' 
b'[mysupport.informatica.com] - reflected XSS'
05 Oct 2023 timeline
b'Mozilla Core Services' disclosed a bug submitted by b'd0xing' 
b'Subdomain takeover of eideticker.mozilla.org'
04 Oct 2023 timeline
b'Mozilla Core Services' disclosed a bug submitted by b'd0xing' 
b'Subdomain takeover of google-cdn-delivery.dev.mozaws.net'
04 Oct 2023 timeline
b'inDrive' disclosed a bug submitted by b'h1xploit' 
b'Bypassing Garbage Collection with Uppercase Endpoint'
04 Oct 2023 timeline
1 ... 42 43 44 45 46 ... 717
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM