0xrocky
Top VIP Security Researcher of the Month | Security Researcher Profile
Security researcher 0xrocky has already helped fix 1797 vulnerabilities.
Researcher reputation: 100
Real name:
Michele Corrias
About me:
I'm completing my M.Sc. degree in Computer Science at University of Milan (UniMi), Italy. More, I work for an ICT company in Milan.
How to contact me:
- e-mail: mhl dot crr at gmail dot com
Alternative Contacts:
- LinkedIn
- Twitter
Certifications & Diplomas:
- B.Sc. degree in Computer Science (UniMi)
- High school diploma
Experience in Application Security
< 1 year
Award / Bug Bounty I prefer:
A thanksgiving and a brief recommendation in my researcher profile will be really appreciated, but if you would like I'm open to:
- donations
- swag
- kudos
- hall of fame
Recommendations and Acknowledgements


Thanks 0xrocky for identifying an XSS vulnerability and for letting us know and helping solve it. His collaboration was fundamental to solving our problems. Great security researcher to work with. Keep up the good work! |


Thank you 0xrocky for identifying a vulnerability and making us aware of it. Great security researcher to work with. Keep up the good work! |


A kudos to 0xrocky for his professional work in not using the identified vulnerabilities and alerting us |


Thanks to 0xrocky for identifying the vulnerability. Now we patched the vulnerability. |


Big thanks to 0xrocky for identifying and responsibly disclosing a vulnerability on our site! |
Honor Badges
Number of Secured Websites
![]() |
![]() |
![]() |
![]() |
10+ Websites
|
50+ Websites
|
500+ Websites
|
WEB SECURITY VETERAN
1000+ Websites
|
Advanced Security Research
![]() |
![]() |
![]() |
![]() |
WAF Bypasser
|
CSRF Master
30+ Reports
|
AppSec Logic Master
30+ Reports
|
Fastest Fix
Fix in 24 hours
|
Outstanding Achievements
![]() |
![]() |
![]() |
|
Secured OBB
|
OBB Advocate
|
Improved OBB
|
Commitment to Remediate and Patch
![]() |
![]() |
![]() |
|
Patch Master
55% Patched
|
Patch Guru
65% Patched
|
Patch Lord
75% Patched
|
Recommendations and Recognition
![]() |
![]() |
![]() |
|
REPUTABLE
10+ Recommends
|
FAMOUS
25+ Recommends
|
GLOBALLY TRUSTED
50+ Recommends
|
Distinguished Blog Author
![]() |
![]() |
![]() |
|
1 Post
|
3 Posts
|
5+ Posts
|
Research Statistics
Total reports: | 2090 |
Total reports on VIP sites: | 44 |
Total patched vulnerabilities: | 1797 |
Recommendations received: | 5 |
Active since: | 19.07.2019 |
Top Security Researcher Awards: | ![]() |
10.02.2020 Stored XSS on h2biz.net
17.10.2019 Stored XSS
I navigated this website: https://www.edilportale.com, an Italian web portal on construction. I found out that it was vulnerable to reflected XSS, as seen in the image.

Reported Vulnerabilities
All Submissions VIP SubmissionsFeatured Submissions
Domain | Reported | Status | Type |
---|---|---|---|
14.03.2020
|
unpatched
|
Cross Site Scripting
|
|
14.03.2020
|
patched
|
Cross Site Scripting
|
|
14.03.2020
|
patched
|
Cross Site Scripting
|
|
12.03.2020
|
patched
|
Improper Access Control
|
|
12.03.2020
|
patched
|
Improper Access Control
|
|
09.03.2020
|
patched
|
Cross Site Scripting
|
|
05.03.2020
|
patched
|
Improper Access Control
|
|
05.03.2020
|
patched
|
Improper Access Control
|
|
05.03.2020
|
patched
|
Improper Access Control
|
|
05.03.2020
|
patched
|
Cross Site Scripting
|
|
05.03.2020
|
patched
|
Improper Access Control
|
|
05.03.2020
|
patched
|
Improper Access Control
|
|
05.03.2020
|
patched
|
Cross Site Scripting
|
|
05.03.2020
|
unpatched
|
Cross Site Scripting
|
|
28.02.2020
|
unpatched
|
Cross Site Scripting
|
|
28.02.2020
|
unpatched
|
Cross Site Scripting
|
|
27.02.2020
|
unpatched
|
Cross Site Scripting
|
|
27.02.2020
|
unpatched
|
Cross Site Scripting
|
|
27.02.2020
|
patched
|
Cross Site Scripting
|
|
27.02.2020
|
unpatched
|
Cross Site Scripting
|
Please login via Twitter to add a recommendation