Report a Vulnerability
Submit, help fixing, get kudos.
Start a Bug Bounty
Run your bounty program for free.
739,304 coordinated disclosures
436,162 fixed vulnerabilities
1144 bug bounties with 2,195 websites
20,587 researchers, 1255 honor badges

Cyber_IndiaTop-50 VIP Open Redirect Reporter Top Security Researcher of the Month | Security Researcher Profile


Security researcher Cyber_India has already helped fix 560 vulnerabilities.



Researcher reputation:  890

Real name:
PRAMOD KUMAR YADAV

About me:
I Am White hat Security Researcher,Bug Bounty Hunter.

I encourage you to contact me ASAP so we can work together to quickly protect your users! All communication will be kept private.

Note :- If You Fixed Your Website Vulnerability, Please Don't Forget To Give Me Recommendations and Acknowledgements In My Open Bug Bounty Profile. link below.

https://www.openbugbounty.org/researchers/Cyber_India/

How to contact me:
email id [email protected]

Alternative Contacts:
email id [email protected]

Certifications & Diplomas:
Diploma in Hardware, Networking, Ccna, Server.
Also diploma in Wapt,Network Security Specialist

Experience in Application Security
1-3 years

Award / Bug Bounty I prefer:
I prefer Bug Bounty in my paypal account

https://www.paypal.me/pk12397

Swag, Bug Bounty Payment, HoF

Halls of Fame:
Got Listed hall of fame more than 50 companies

Follow me on:
Twitter

Recommendations and Acknowledgements | Full List:

@Pinal_ShahJ     17 December, 2020
    Twitter Pinal_ShahJ Pinal from Tyche Softwares:
Thanks @cyber_pramod for sharing some important insights related to our website. Highly recommend your services for site security and protection. Quick response and highly knowledgeable.
@anas_elsh     9 December, 2020
    Twitter anas_elsh Anas from SunStar:
Cyber_indea informed us about a security issue in our website, his details about the issue were very clear which made it easy for us to patch it, we recommend working with him.
@pcmonitors     26 November, 2020
    Twitter pcmonitors Adam Simmons from PC Monitors:
Identified a security issue I was completely unaware of and gave a very clear description of it. Allowing me to correct the problem immediately. Thank you Cyber_India!
@matrixrewriter     15 January, 2021
    Twitter matrixrewriter Webmaster from Titanium Track:
We had no idea that this vulnerability existed in many PHP-based websites and you kindly reported it to us. Thanks for your help and all the best for your career!
@nitallica     13 January, 2021
    Twitter nitallica Nicki Faulk from n/a:
Directed me to an old php info page I had completely forgotten about, as well as reminded me to fix my DMARC record. Thank you! :)
@yeswap     13 January, 2021
    Twitter yeswap yeswap from WapReview:
Thank your Pramod for finding and reporting a security issue on my site. Thank you also for responding promptly with details of the issue.
@alexandracrtn     11 January, 2021
    Twitter alexandracrtn Alexandra Ciortan from Autonom Romania:
Pramod identified a simple vulnerability on our website. He supplied clear details immediately, and followed through in confirming our fix.
Thanks for the quick help.
@Praveen73720670     7 January, 2021
    Twitter Praveen73720670 Ti Chi from okaya:
Thank you for your report about a vulnerability on our web site. Your prompt response when we requested detailed information was very helpful. We really appreciate it.
@Praveen73720670     7 January, 2021
    Twitter Praveen73720670 Ti Chi from okaya:
Most recommend this specialist. Replied very fast.
@Praveen73720670     7 January, 2021
    Twitter Praveen73720670 Ti Chi from okaya:
He provided me many bug reports. Most recommend this specialist
@realitaetsbuero     6 January, 2021
    Twitter realitaetsbuero Anja from proT:
Thank you very much for your help! It was super helpful for us, that you did not only report the problem to us, but also helped us with information how to fix it. :-)
Many thanks!
:-)
@tndhrs     6 January, 2021
    Twitter tndhrs Tsunoda (Dept. of ICE) from Tohoku Inst. Tech.:
Thank you for your report about a vulnerability on our web site. Your prompt response when we requested detailed information was very helpful. We really appreciate it.
@guylabbe     6 January, 2021
    Twitter guylabbe Guy Labbé from GL:
Pramod replied within 10 minutes with the sensitive information about the vulnerability he discovered on our website. Very helpful and generous of him. Totally recommend his services for security testing of any website :)
@Somradit     5 January, 2021
    Twitter Somradit Zachary from University of Washington:
@Cyber_India disclosed a vulnerability on our website. When contacted for more details, they responded within minutes! Thank you!
@bendspoons     5 January, 2021
    Twitter bendspoons Dominic from dimento.com:
Very - very! - fast response, nice guy. Keep up the good work! Absolutely recommended!
@BeerotYitzhak     30 December, 2020
    Twitter BeerotYitzhak Berl from Beerot:
thanks a lot! i recommend you!
@aartvdwerf     30 December, 2020
    Twitter aartvdwerf Aart from OI:
Cyber_India reported an information disclosure (phpinfo()) issue on our site. Thank you for sending this bug.
@josgeor     23 December, 2020
    Twitter josgeor Joseph George from Joseph George:
Thank you for the vulnerability report and clear directions on fixing the vulnerability. Really appreciate it.
@Praveen73720670     22 December, 2020
    Twitter Praveen73720670 Michal from Infosec:
Very fast and clear report. Mitigation step is next level, must recemmomd this specialist.
@Praveen73720670     22 December, 2020
    Twitter Praveen73720670 Michal from Infosec:
Very fast and clear report. Mitigation step is next level, must recemmomd this specialist.
@KRONWALLED1134     22 December, 2020
    Twitter KRONWALLED1134 Excli from Excli:
Found a open phpinfo() file on our server. Thanks for the quick help.
@dani_books     22 December, 2020
    Twitter dani_books Jano from dani books:
Thanks for the quick help!
@balu     22 December, 2020
    Twitter balu Thomas Walter from ConPresso GmbH & Co. KG:
Cyber_India reported an information disclosure (phpinfo()) issue on our site. He replied very fast with details on the issue so we could fix it immediately. Communication was very professional.
@sentience     21 December, 2020
    Twitter sentience Kevin Yank from Impro Melbourne:
On behalf of @impromelbourne, thanks for the vulnerability report! Pramod supplied clear details immediately, and followed through in confirming our fix. ❤️
@hoptiludrop     20 December, 2020
    Twitter hoptiludrop Jennie Evans from Hop Till You Drop Music Agency:
Thanks for pointing out that info.php was accessible on the company website. I have now downloaded the file.
@Lunaria_Ltd     19 December, 2020
    Twitter Lunaria_Ltd Lunaria_ltd from Lunaria Ltd:
Found a stray PHP info file on our site - thanks!
@RailfutureInter     18 December, 2020
    Twitter RailfutureInter Jerry from Railfuture Ltd:
Pramod identified a simple vulnerability on our website that provided potentially useful information for a hacker, and also provided the simple solution, which we implemented immediately.

We do not know how the vulnerability existed as the rogue script should not have been there.
@Energy_Brokers     18 December, 2020
    Twitter Energy_Brokers Nick Grogan from Energy Solutions:
Thanks for reporting this bug, highly recommended. Good luck with your career.
@BankTreeUK     17 December, 2020
    Twitter BankTreeUK Bob from BankTree:
Thanks for the excellent service all the best.
@BankTreeUK     17 December, 2020
    Twitter BankTreeUK Bob from BankTree:
Thanks for the excellent service all the best.
@MessingLE     17 December, 2020
    Twitter MessingLE MessingLE from clickstorm:
Thanks for the great support. I can recommend this specialist.
@Praveen73720670     17 December, 2020
    Twitter Praveen73720670 Praveen from InfoSec:
Cyber_India Very Fast and unique, very clear reports. Much recommended this specialist.IF you are finding issues that means you are qualified enough.
@wolfalex82     17 December, 2020
    Twitter wolfalex82 Alex from careshop.de:
Thank you for reporting a bug. I recommend this specialist.
@FabianKnig17     17 December, 2020
    Twitter FabianKnig17 Fabian from ELKB:
Thank you very much for making the web a safer place!
@aaaitksk     17 December, 2020
    Twitter aaaitksk aaaitksk from TKBB:
Thank you for your finding, prompt and kind responses. Recommended.
@MediaMa88734053     14 December, 2020
    Twitter MediaMa88734053 Admin from Media Marketing:
Cyber_India was very quick in our request of bug evidence. Recommended!
@dusalnet     14 December, 2020
    Twitter dusalnet Almas from Blogmn.net:
Thank you for inform vulnerability.
@Franciscocaal85     13 December, 2020
    Twitter Franciscocaal85 Francisco from Luxhabitat:
Cyber_India reported the bug and was very responsive and quick in our communications. Recommended
@ppa086     11 December, 2020
    Twitter ppa086 Philip from dampftbeidir:
Thanks for the quick Report and the friendly response. We could fix the Bug very quick.
@LoyverseD     10 December, 2020
    Twitter LoyverseD DevTeam from LVRS:
Thank you for your finding, quick and kind responses.
@WizardVfx     9 December, 2020
    Twitter WizardVfx VFXWizard Support from VFX Wizard Srl:
Thank you for reporting the bug and providing detail to fix it. Much appreciated. I can recommend this specialist.
@Web2Generators     9 December, 2020
    Twitter Web2Generators Web2Generators from Web2Generators:
Thank you for the security report which has now been fixed!
@AVillodre     9 December, 2020
    Twitter AVillodre Angel V. from Campuseducacion.com:
Mr. Kumar swiftly reported a bug in our website in a friendly manner and was altogether a very usefuld and pleasant exchange.
@VMarvvy     3 December, 2020
    Twitter VMarvvy Ryan from HTA:
Thank you for reporting the bug and providing detail to fix it.
@obb_wr     2 December, 2020
    Twitter obb_wr Plato from W-R:
Thanks Cyber_India for reporting the issue and for your prompt & friendly response.
@DidiZehavi     29 November, 2020
    Twitter DidiZehavi Didi Zehavi from Ipanel:
Pramod Yadav, Thank you very much for a very good job finding a bug and helping fix it!
@thekeithwaters     29 November, 2020
    Twitter thekeithwaters Keith from Intercape:
Thanks for reporting the issue and your prompt and friendly response.
@GeoPostcodes     27 November, 2020
    Twitter GeoPostcodes Simon from GeoPostcodes:
Found security flaw exposing internal configuration details that should not be public and noticed us at once. Thank you for keeping us safe.
@gamingonlinux     27 November, 2020
    Twitter gamingonlinux GamingOnLinux from GamingOnLinux:
Found an issue in a file we left up that could have caused problems, let us know quickly. Great work.
@chantysothy     25 November, 2020
    Twitter chantysothy chantysothy from Koh Santepheap Daily:
Thank you so much Cyber_India for reporting us improper access control. We followed your instructions and reproduced again. Also mitigation steps helped us. I recommend this security specialist.
@Guide_Astuces     24 November, 2020
    Twitter Guide_Astuces Maher from Guideastuces.com:
Thank you for reporting the bug and helping me to fix it. Much appreciated. I recommend this security specialist.
@vintage_griffin     23 November, 2020
    Twitter vintage_griffin VintageGriffin from Information Security:
Thank you Cyber_India for identifying and letting us know of an improperly secured server status page.
@Praveen73720670     17 November, 2020
    Twitter Praveen73720670 Matthies from Information security:
Thank you so much Cyber_India for reporting us improper access control. We followed your instructions and reproduced again. Also mitigation steps helped us. I recommend this security specialist.
@kuorumorg     10 November, 2020
    Twitter kuorumorg Iñaki from Kuorum:
Thank you for reporting the bug. I can fix it with his recommendations. Much appreciated. I can recommend this specialist.
@ConDoRrus21     4 November, 2020
    Twitter ConDoRrus21 Dmitriy Lazarev from Information Security:
Thank you for reporting the bug and providing detail to fix it. Much appreciated. I can recommend this specialist.

Please login via Twitter to add a recommendation

Honor Badges


Number of Secured Websites

10+ Secured Websites Badge
50+ Secured Websites Badge
500+ Secured Websites Badge
Web Security Veteran Badge
10+ Websites
50+ Websites
500+ Websites
WEB SECURITY VETERAN
1000+ Websites

Advanced Security Research

WAF Bypasser Badge
CSRF Master Badge
AppSec Logic Master Badge
Fastest Fix Badge
WAF Bypasser
CSRF Master
30+ Reports
AppSec Logic Master
30+ Reports
Fastest Fix
Fix in 24 hours

Outstanding Achievements

Secured OBB Badge
OBB Advocate Badge
Improved OBB Badge
Secured OBB
OBB Advocate
Improved OBB

Commitment to Remediate and Patch

Patch Master Badge
Patch Guru Badge
Patch Lord Badge
Patch Master
55% Patched
Patch Guru
65% Patched
Patch Lord
75% Patched

Recommendations and Recognition

REPUTABLE Badge
FAMOUS Badge
GLOBALLY TRUSTED Badge
REPUTABLE
10+ Recommends
FAMOUS
25+ Recommends
GLOBALLY TRUSTED
50+ Recommends

Distinguished Blog Author

Distinguished Blog Author Badge
Distinguished Blog Author Badge
Distinguished Blog Author Badge
1 Post
3 Posts
5+ Posts

Research Statistics



Total reports:23630
Total reports on VIP sites:841
Total patched vulnerabilities:560
Total vulnerabilities on Hold (Open Bug Bounty):23068
Recommendations received:55
Active since:04.03.2020
Top VIP Security Researcher Awards: Top VIP Security Researcher of the Month Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week

Open Bug Bounty Certificate


Researcher Certificate



No posts in blog yet


Reported Vulnerabilities

All Submissions VIP SubmissionsFeatured Submissions

  Latest Patched

 17.01.2021 ndtv.com
 17.01.2021 splunk.com
 17.01.2021 tidal.com
 16.01.2021 liveinternet.ru
 16.01.2021 kickit.to
 16.01.2021 sante.fr
 16.01.2021 gehaltsvergleich.com
 16.01.2021 qub.ac.uk
 16.01.2021 bostonglobe.com
 16.01.2021 inshallah.com

  Latest Blog Posts

25.12.2020 by _Y000_
How to bypass mod_security (WAF)
10.12.2020 by _Y000_
sql injection to bypass Mod_Security
10.12.2020 by _Y000_
Create encoded sql payloads
26.10.2020 by _r00t1ng_
Bypass Addslashes using Multibyte Character
26.10.2020 by _r00t1ng_
One Payload to Inject them all - MultiQuery Injection

  Recent Recommendations

@CERT_rlp     18 January, 2021
    Twitter CERT_rlp:
The team of CERT-rlp would like to thank Chirag Prajapati for a responsible and coordinated disclosure of vulnerabilities
@CERT_rlp     18 January, 2021
    Twitter CERT_rlp:
The team of CERT-rlp would like to thank EzioPaglia for a responsible and coordinated disclosure of vulnerabilities
@kushidat     18 January, 2021
    Twitter kushidat:
Thank you so much for suggesting the vulnerability. The prompt and detailed response helped solve the issues.
@eduardo_sales     17 January, 2021
    Twitter eduardo_sales:
Praveen was very helpful in providing information about a security issue in our site. With his help, we were able to correct eveything and keep our site safe.
@lorenzoherrera     16 January, 2021
    Twitter lorenzoherrera:
@singhnitesh21 found a hidden bug that might've allowed some XSS nasty things to sneak in. We've featured him in our bug hunters hall of fame: https://litmind.com/bughunters