This is a page where security researchers are recognised for their reports. This page lists security researchers who have reported security vulnerabilities and collaborated to remediate them.
Danksagungen / Acknowledgments
Dies ist eine Seite, auf der Sicherheitsforscher für ihre Berichte ausgezeichnet werden. Auf dieser Seite werden Sicherheitsforscher aufgeführt, die Sicherheitsschwachstellen gemeldet und an deren Behebung mitgearbeitet haben.
2026
- Devansh Chauhan – Insufficient Session expiration (2026-01-21)
2025
- Swapnil Bhaye – XSS (Cross Site Scripting) (2025-12-13)
- Hernanda – XSS (Cross Site Scripting) (2025-11-28)
- Gaurang Maheta – Security Misconfiguration (2025-11-16)
- Gaurang Maheta – Certificate Issue (2025-11-12)
- Devansh Chauhan – Authentication Issue - Weak Password Change Mechanism ()
- M K Rahul Rao (BUGBOY07) – Unverified Redirect (2025-10-28)
- A Nikhil Kumar (SpiritBoy47) – Unverified Redirect (2025-10-28)
- Devansh Chauhan – Javascript Vulnerability (2025-09-30)
- Gonzalo Aguilar (6h4ack) – XSS (Cross Site Scripting), Security misconfiguration (2025-09-23)
- Manuel Martínez – XSS (Cross Site Scripting) (2025-09-08)
- Mikel Hernandez Alonso – XSS (Cross Site Scripting) (2025-08-29)
- Shambhi Reddy Chemikala – Security misconfiguration (2025-07-12)
- Devansh Chauhan – multiple Clickjacking vulnerabilities (2025-06-12)
- Devansh Chauhan – Javascript Vulnerability (2025-05-25)
- Devansh Chauhan – multiple XSS (Cross Site Scripting) (2025-05-24)
- Devansh Chauhan – Phishing Vulnerability (2025-05-14)
- Michal Biesiada – Security misconfiguration (2025-04-08)
- Devansh Chauhan – multiple XSS (Cross Site Scripting) (2025-03-26)
- Devansh Chauhan – XSS (Cross Site Scripting) (2025-02-26)
- Devansh Chauhan – multiple XSS (Cross Site Scripting), multiple (D)DoS Vulnerabilities (2025-01-29)
- Devansh Chauhan – XSS (Cross Site Scripting) (2025-01-27)
- Devansh Chauhan – Cross-Origin Resource Sharing (CORS), (D)DoS Vulnerabilities (2025-01-25)
- Md Yasir – Directory Listing (2025-01-21)
- Arpit Sharma – Missing rate limit, weak credentials (2025-01-19)
2024
- Gaurang Maheta – multiple Unvalidated Redirects (2024-12-25)
- Devansh Chauhan – Cross-Site Scripting (XSS) (2024-10-12)
- Gurudatt Choudhary – Broken link hijacking (2024-11-05)
- Suprit S Pandurangi – Clickjacking Vulnerability (2024-10-15)
- Raghav Sharma – Cross-Site Scripting (XSS) (2024-10-09)
- Aashutosh Devkota – Html Injection & Reflected XSS (2024-09-25)
- Dhivish Varshan K – Security Misconfiguration (DNS) (2024-09-22)
- Devansh Chauhan – Cross-Site Scripting (XSS) (2024-09-08)
- Keyur Maheta – Security Misconfiguration (DNS) (2024-09-07)
- Ori Levi – XML-RPC Exposure, Directory Listing Access (2024-09-05)
- Shruti Yogesh Patil – WAF bypas (2024-08-14)
- Aashutosh Devkota – Host Header Poisoning (2024-07-12)
- Jaime F. Murillo – Host Header Poisoning, Content Spoofing (2024-07-07)
- Tirth A Patel – (D)DoS Vulnerability (2024-06-18)
- Aashutosh Devkota – Clickjacking Vulnerability, Server-Side-Request-Forgery (2024-06-14)
- Chinmaya Rana – Reflected Cross-Site Scripting (2024-04-11)
- Ved Kolambkar – Clickjacking (2024-04-04)
- Biswajeet Ray – DoS-vulnerability (2024-03-02)
- David Padilla Alvarado – Reflected Cross-Site Scripting, SVN repository exposed (2024-02-16)
- Vinayak Sakhare – Reflected Cross Site Scripting (2024-02-13)
- Harshit Kumar – open XML-RPC (2024-02-10)
- Adrián Tirado García – wordpress issues, clickjacking (2024-02-05)
- Vijay Sutar – information disclosure (2024-02-03)
- Miguel Segovia Gil – remote code execution (2024-01-31)
- Nikhil Rane – broken link hijacking (2024-01-22)
- Parth Narula – DoS-vulnerability, information disclosure, Cross-Site Scripting (2024-01-14)