Coordinated and Responsible Vulnerability Disclosure Free Bug Bounty Program 291,172 coordinated disclosures
165,603 fixed vulnerabilities
233,142 websites, 17,764 VIP websites
7,763 researchers, 6,915 subscribers

MLT Top Security Researcher Top VIP Security Researcher of the Month | Security Researcher Profile


Security researcher MLT has already helped fix 1956 vulnerabilities.



Researcher reputation:  20

Real name:
Matt Telfer

About me:
Back from hiatus. I will now be submitting vulnerabilities again.

How to contact me:
[email protected]

Experience in Application Security
over 5 years

Award / Bug Bounty I prefer:
$$$ (PayPal, Bitcoin, Bank Transfer)
Gift Cards (Amazon, etc)
T-Shirts, clothing
Food and Drinks :)

Recommendations and Acknowledgements

    9 March, 2016
     zothar David Sowder from UT Arlington:
MLT responded with the relevant details in a reasonable amount of time. Our thanks to MLT for providing this information.

Please login via Twitter to add a recommendation

Awards and Achievements


Number of Secured Websites

10+ Websites
50+ Websites
500+ Websites
WEB SECURITY VETERAN
1000+ Websites

Advanced Security Research

WAF Bypasser
CSRF Master
30+ Reports
AppSec Logic Master
30+ Reports
Fastest Fix
Fix in 24 hours

Outstanding Achievements

Secured OBB
OBB Advocate
Improved OBB

Commitment to Remediate and Patch

Patch Master
55% Patched
Patch Guru
65% Patched
Patch Lord
75% Patched

Recommendations and Recognition

REPUTABLE
10+ Recommends
FAMOUS
25+ Recommends
GLOBALLY TRUSTED
50+ Recommends

Research Statistics



Total reports:2536
Total reports on VIP sites:364
Total patched vulnerabilities:1956
Total vulnerabilities on Hold (Open Bug Bounty):4
Recommendations received:1
Active since:28.02.2015
Top Security Researcher Awards: The Top Security Researcher Top Security Researcher of the Month Top Security Researcher of the Month
Top VIP Security Researcher Awards: Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week

Open Bug Bounty Certificate



Reported Vulnerabilities

All Submissions VIP SubmissionsFeatured Submissions

Domain Reported Status Type
18.10.2018
On Hold
Cross Site Scripting
18.10.2018
On Hold
Cross Site Scripting
18.10.2018
On Hold
Cross Site Scripting
18.10.2018
On Hold
Cross Site Scripting
25.02.2018
patched
Cross Site Scripting
25.02.2018
unpatched
Cross Site Scripting
25.02.2018
unpatched
Cross Site Scripting
14.06.2017
patched
Cross Site Scripting
14.06.2017
patched
Cross Site Scripting
14.06.2017
patched
Cross Site Scripting
14.06.2017
patched
Cross Site Scripting
14.06.2017
patched
Cross Site Scripting
14.06.2017
patched
Cross Site Scripting
14.06.2017
patched
Cross Site Scripting
14.06.2017
patched
Cross Site Scripting
14.06.2017
patched
Cross Site Scripting
14.06.2017
patched
Cross Site Scripting
14.06.2017
patched
Cross Site Scripting
14.06.2017
patched
Cross Site Scripting
14.06.2017
patched
Cross Site Scripting

  Latest Patched

      gw.geneanet.org
    Patched on 19.11.2018
      eatingwell.com
    Patched on 19.11.2018
      m.see.xxx
    Patched on 19.11.2018
      porn555.com
    Patched on 19.11.2018
      sibelius.com
    Patched on 19.11.2018
      ytsyify.com
    Patched on 19.11.2018
      visitbirmingham.com
    Patched on 19.11.2018
      heavyreading.com
    Patched on 19.11.2018
      fantasyhd.com
    Patched on 19.11.2018
      castingcouch-x.com
    Patched on 19.11.2018

  Recent Recommendations

    19 November, 2018
     SunOlilef:
Un grand merci pour votre aide et votre disponibilité.
La correction de la faille détectée a été facilité par vos conseils et vos précisions.
    19 November, 2018
     jcolls:
Many thanks to Eduardo for letting us know of a vulnerability and some suggested solutions.
    16 November, 2018
     Honscha_Muenzen:
Thank you very much for your help!
    16 November, 2018
     mousepotatothet:
Thanks to your continuous support, sharing the security vulnerability, and keeping our cyber space secure.
    15 November, 2018
     corebox:
Thanks for responsibly reporting a security weakness on our website. We greatly appreciate you telling us about it.