Open Bug Bounty selected among the
Top 5 Bug Bounty programs to watch
by The Hacker News

All Open Bug Bounty emails are sent only from openbugbounty.org domain being digitally signed. All others are fake. Learn more.
  • For Researchers 
    Report a Vulnerability
    Report and help remediate a vulnerability
    found on any website

         		Write a Blog Post
    Write a blog post to share your knowledge
    and get kudos
    Browse Bug Bounty Programs
    Browse active bug bounty programs
    run by website owners         		Ask a Question
    Ask questions and share your improvement
    ideas
    How it Works
    Download presentation and learn
    how our platform works

        PDF, 1MB
  • For Owners 
    Start a Bug Bounty
    Start your bug bounty program at no cost
    and leverage crowd-security testing

         		Ask a Question
    Ask questions or let us know how to make
    Open Bug Bounty even better
    API Request
    National CERTs and law enforcement
    agencies may request our API
    How it Works
    Download presentation and learn
    how our platform works

        PDF, 1MB
  • Hall of Fame 
    Top Security Researchers
    They make Web a safer place by reporting
    and helping remediate vulnerabilities

         		Acknowledgements
    Website owners share their experience of collaboration with the researchers






    How it Works
    Download presentation and learn
    how our platform works

        PDF, 1MB
  • About 
    About the Project
    Read about Open Bug Bounty history,
    values and mission

         		Latest Reports
    Browse the most recent vulnerability
    submissions
    Contact Us
    Get in touch


    How it Works
    Download presentation and learn
    how our platform works

        PDF, 1MB
  • Forum
  • Blog
  •       
For security researchers
Report a Vulnerability
Submit, help fixing, get kudos.
For website owners
Start a Bug Bounty
Run your bounty program for free.
 1,246,748 coordinated disclosures
899,027 fixed vulnerabilities
1,584 bug bounty programs, 3,148 websites
28,430 researchers, 1,443 honor badges

OpenBugBounty.org  >  Security Researchers  >  KhanJanny

KhanJanny Top VIP Security Researcher of the Month | Security Researcher Profile


Security researcher KhanJanny has already helped fix 4087 vulnerabilities.



Researcher reputation:  620

Real name:
#NoobSec #Reboot_ex

About me:
Tech Geek
Love to find vulnerabilities :)

Contact email:
knock me on facebook/twitter otherwise best way to contact me
mail : [email protected]
https://twitter.com/Reboot_Ex
https://facebook.com/bossjannykhan

Alternative Contacts:
mail : [email protected]

Experience in Application Security
3-5 years

Award / Bug Bounty I prefer:
A thanks/profile recommendation will be really appreciated, but if you'd like.
# T-shirts, Sweats, Caps, Stickers, Keychains, Gadgets & Cards.
#HOF

# Payoneer,(IBAN), Paypal :)

Halls of Fame:
http://www.techcens.com/security/
https://www.chalk.com/security/
http://www.telekom.com/security/
eset
hpcfactor
unimd
rsvpBOOK.com
patton.com
more will update soon :)

Follow me on:
Twitter
LinkedIn

Ethics and Rules:
#NoobSec #Reboot_ex is required to abide by the ethics and rules of the Open Bug Bounty project. If you reasonably believe that rules are not respected, please report this to us.

Recommendations and Acknowledgements

@martin_ouwehand     30 November, 2021
    Twitter martin_ouwehand Martin Ouwehand from EPFL:
We thank KhanJanny for his responsible disclosure of an XSS in one of our Web sites
@JohanLindberg73     3 December, 2020
    Twitter JohanLindberg73 johanlindberg from seatec:
Thank you so much for pointing out the security issue on our site.
When I contacted KhanJanny for details I got them sent to me by email within minutes. Highly appreciated!
@arnoxmp     2 March, 2020
    Twitter arnoxmp Arno from Non-profit:
Thank you for helping us identify an XSS problem on our website.
@CalvinN14532713     25 February, 2020
    Twitter CalvinN14532713 Calvin Nelson from McCurdy Auction, LLC:
Thank you so much for your hard work with our company! It was a great help and opened us up to perusing a bug bounty in the future!

KhanJanny was very helpful in identifying some vulnerabilities on our site that we were able to resolve!
@CalvinN14532713     25 February, 2020
    Twitter CalvinN14532713 Calvin Nelson from McCurdy Auction, LLC:
Thank you so much for your hard work with our company! It was a great help and opened us up to perusing a bug bounty in the future!

KhanJanny was very helpful in identifying some vulnerabilities on our site that we were able to resolve!
@kkb5mobile     22 November, 2019
    Twitter kkb5mobile Shinichi Ueno from Kagoshima Broadcasting Corporation:
Thank you for letting us know about the vulnerability of our website.
Thanks to you, I was able to correct it.
Thank you very much.
@cpweather     28 October, 2019
    Twitter cpweather Christian from meteocentre.com:
Thanks so much for having notified me about the vulnerability of some code in my website. Thanks to your very professional approach the bug could be fixed! I greatly appreciate his efforts. Thank you!
@vttoth     12 October, 2019
    Twitter vttoth Viktor T Toth :
Useful report of an XSS vulnerability; readily disclosed another vulnerability once contacted. Professional behavior. Thank you.
@Web1Consulting     13 September, 2019
    Twitter Web1Consulting Josh Freedman from Web 1:
KhanJanny provided specific information and was very responsive. I very much appreciate his efforts.
@UsraWebmaster     6 September, 2019
    Twitter UsraWebmaster USRAWebmaster from USRA:
Thank you for your responsible disclosure of the XSS vulnerability.

Shows the first 10 recommendations. See all.

Please login via Twitter to add a recommendation

Honor Badges


Number of Secured Websites

10+ Secured Websites Badge
50+ Secured Websites Badge
500+ Secured Websites Badge
Web Security Veteran Badge
10+ Websites
50+ Websites
500+ Websites
WEB SECURITY VETERAN
1000+ Websites

Advanced Security Research

WAF Bypasser Badge
CSRF Master Badge
AppSec Logic Master Badge
Fastest Fix Badge
WAF Bypasser
CSRF Master
30+ Reports
AppSec Logic Master
30+ Reports
Fastest Fix
Fix in 24 hours

Outstanding Achievements

Secured OBB Badge
OBB Advocate Badge
Improved OBB Badge
Secured OBB
OBB Advocate
Improved OBB

Commitment to Remediate and Patch

Patch Master Badge
Patch Guru Badge
Patch Lord Badge
Patch Master
55% Patched
Patch Guru
65% Patched
Patch Lord
75% Patched

Recommendations and Recognition

REPUTABLE Badge
FAMOUS Badge
GLOBALLY TRUSTED Badge
REPUTABLE
10+ Recommends
FAMOUS
25+ Recommends
GLOBALLY TRUSTED
50+ Recommends

Distinguished Blog Author

Distinguished Blog Author Badge
Distinguished Blog Author Badge
Distinguished Blog Author Badge
1 Post
3 Posts
5+ Posts

Research Statistics



Total reports:17712
Total reports on VIP sites:225
Total patched vulnerabilities:4087
Total vulnerabilities on Hold (Open Bug Bounty):1
Recommendations received:40
Active since:19.09.2017
Top Security Researcher Awards:Gold Star Top Security Researcher of the Month

Open Bug Bounty Certificate


Researcher Certificate

Reported Vulnerabilities

All Submissions VIP SubmissionsFeatured Submissions




No posts in blog yet










  Latest Patched

 25.06.2022 ppd-elearning.phoenix.gov
 25.06.2022 mohca.gov.bt
 25.06.2022 ual.es
 25.06.2022 aslteramo.it
 25.06.2022 understood.org
 25.06.2022 ossokolje.edu.ba
 25.06.2022 e.csb.gov.lv
 25.06.2022 mansfield.vic.gov.au
 25.06.2022 educba.com
 25.06.2022 fodors.com

  Latest Blog Posts

15.02.2022 by sepkatpro
Ultimate XSS Polyglot
11.11.2021 by mistry4592
The Most used Chrome Extensions are Used For Penetration Testing.
08.10.2021 by NNeuchi
How I Found My First Bug Reflected Xss On PIA.GOV.PH(Philippine Information Agency)
26.08.2021 by PyaePhyoThu98
eG Manager v7.1.2: Improper Access Control lead to Remote Code Execution (CVE-2020-8591)
14.07.2021 by Open Bug Bounty
Interview With Open Bug Bounty

  Recent Recommendations

@TiagoGuedesEGo1     20 June, 2022
    Twitter TiagoGuedesEGo1:
shashank_bhure made us aware of several security vulnerabilities that represented security flaws of several degrees and needed to be rectified.

It was a pleasure working with you and I hope we can work again in the future, Thank you!
@TiagoGuedesEGo1     15 June, 2022
    Twitter TiagoGuedesEGo1:
Hardik_850 made us aware of several security vulnerabilities that represented security flaws of several degrees and needed to be rectified.

It was a pleasure working with you and I hope we can work again in the future, Thank you!
@DeBuecher     3 June, 2022
    Twitter DeBuecher:
Peter was of good help
@salmankhan2016     26 May, 2022
    Twitter salmankhan2016:
thanyou security_helper5
@securityhelper5     26 May, 2022
    Twitter securityhelper5:
thank you for report
Making Web a Safer Place
Coordinated & Responsible Disclosure
Based on ISO 29147 Guidelines
Terms & Privacy
2022 © OpenBugBounty
  • Follow us