Top10 publishers:
b'bobrov'117 
b'sp1d3rs'86 
b'geeknik'80 
b'linkks'75 
b'jobert'70 
b'someonenobbd'62 
b'nyymi'56 
b'ooooooo_q'50 
b'jon_bottarini'49 
b'haxta4ok00'48 

the unofficial HackerOne disclosure timeline.

X
b'GitLab' disclosed a bug submitted by b'mrrajputhacker2' 
b'Information Disclosure - Pvt Gitlab Issue Disclosing Through GitLab Unfiltered YouTube channel.'
13 Sep 2023 timeline
b'curl' disclosed a bug submitted by b'selmelc' 
b'CVE-2023-38039: HTTP header allocation DOS'
13 Sep 2023 timeline
b'Revive Adserver' disclosed a bug submitted by b'l4stb1t' 
b'Multiple cross-site scripting (XSS) vulnerabilities in Revive Adserver'
13 Sep 2023 timeline
b'Tor' disclosed a bug submitted by b'andreien' 
b"'Request English versions of web pages for enhanced privacy' keeps previous (grayed out) settings "
13 Sep 2023 timeline
b'HackerOne' disclosed a bug submitted by b'0verw4tch' 
b'IDOR: Authorization Bypass in LockReport Mutation for public reports'
13 Sep 2023 timeline
b'TikTok' disclosed a bug submitted by b'rioncool22' 
b'Stored XSS Via Ads Account Name'
12 Sep 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'sayoojbkumar' 
b'SSRF Vulnerability through Connection test feature'
12 Sep 2023 timeline
b'Radancy' disclosed a bug submitted by b'mouhannadlrx' 
b'Admin account/panel takeOver and Doing actions in admin panel via DOM-based XSS'
12 Sep 2023 timeline
b'Mozilla Core Services' disclosed a bug submitted by b'griffinf' 
b'Mozilla Mastodon Staging Instance Admin API Key Disclosure Through Slack'
11 Sep 2023 timeline
b'Mozilla Critical Services' disclosed a bug submitted by b'saiteja1231323' 
b'Response Manipulation to enable Account recovery key with out current password'
11 Sep 2023 timeline
b'Tennessee Valley Authority' disclosed a bug submitted by b'sailesh01nik' 
b'No Rate Limit On Forgot Password Page'
11 Sep 2023 timeline
b'Tennessee Valley Authority' disclosed a bug submitted by b'tvmbug' 
b'xss reflected - pq.tva.com'
11 Sep 2023 timeline
b'inDrive' disclosed a bug submitted by b'trustworthy' 
b'the domain is truck-admin.eu-east-1.indriverapp.com and Enter the management system of the blasting mobile phone verification code'
11 Sep 2023 timeline
b'Node.js' disclosed a bug submitted by b'rafaelgss' 
b'process.binding() can bypass the permission model through path traversal'
10 Sep 2023 timeline
b'Node.js' disclosed a bug submitted by b'rafaelgss' 
b'fs.statfs bypasses Permission Model'
10 Sep 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'leodog896' 
b'Dependency Policy Bypass via process.binding'
09 Sep 2023 timeline
b'Internet Bug Bounty' disclosed a bug submitted by b'bean-zhang' 
b"Argocd's web terminal session doesn't expire"
09 Sep 2023 timeline
b'Nextcloud' disclosed a bug submitted by b'carl_schwan' 
b'Permissions not respected when copying entire group folders'
09 Sep 2023 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'0xmaruf' 
b'CVE-2023-24488 xss on https:///'
08 Sep 2023 timeline
b'U.S. Dept Of Defense' disclosed a bug submitted by b'maskedpersian' 
b'stored cross site scripting in https://.edu'
08 Sep 2023 timeline
1 ... 45 46 47 48 49 ... 717
Follow @disclosedh1 on twitter to receive updates when a new bug is disclosed!
Twitter
BY DENIS WERNER - @NOBBD - IMPRESSUM