Report Email Alerts Open Bug Bounty: 107313 coordinated disclosures
Full Disclosure: 32316 vulnerabilities
Total Vulnerabilities Fixed: 36297
116264 vulnerable websites, 12669 VIP websites
2787 security researchers, 3863 notification subscribers

Max | Security Researcher Profile

Security researcher Max has already helped fix 346 vulnerabilities.

Follow me on:
Twitter

About me:
I report all finds as Full Disclosure so that they are patched as soon as possible (except sites who run bounty programs)

How to contact me:
My twitter

Award / Bug Bounty I prefer:
Payment
Hall Of Fame

Halls of Fame:
Twitter
AOL
LocalTapiola
CERT-EU


Statistics and Awards

Approved XSS vulnerabilities:1598
Approved XSS vulnerabilities on VIP websites:170
Patched vulnerabilities:348
Verified vulnerabilities on Hold (Open Bug Bounty):2
Active since:13.02.2016
Top VIP Security Researcher Awards: Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week

Recommendations and Acknowledgements

1 November, 2016
FJP_IT_System FJP_IT_System from Fujitsu Personal System Limited:

Thanks MAX for your vulnerability check.
I'm administrator of 247ps2.jp.fujitsu.com website.
Please tell me the mean of "On the 08.102016" picture.
Can not delete this picture?

20 February, 2016
Ethiqal David from UnderLabel:

Max discovered a vulnerability in my website and I swiftly fixed it, thanks Max!

Please login via Twitter to add a recommendation


Reported Vulnerabilities

All Submissions VIP SubmissionsFeatured Submissions

Domain Reported Status Type
22.02.2017
patched
XSS  (Open Bug Bounty)
21.02.2017
unpatched
XSS  (Open Bug Bounty)
21.02.2017
unpatched
XSS  (Open Bug Bounty)
21.02.2017
unpatched
XSS  (Open Bug Bounty)
21.02.2017
unpatched
XSS  (Full Disclosure)
18.11.2016
unpatched
OR   (Open Bug Bounty)
09.11.2016
unpatched
OR   (Full Disclosure)
09.11.2016
unpatched
OR   (Full Disclosure)
09.11.2016
unpatched
OR   (Full Disclosure)
09.11.2016
unpatched
OR   (Full Disclosure)
09.11.2016
patched
OR   (Full Disclosure)
08.11.2016
unpatched
OR   (Full Disclosure)
08.11.2016
unpatched
OR   (Full Disclosure)
08.11.2016
unpatched
OR   (Full Disclosure)
08.11.2016
unpatched
OR   (Full Disclosure)
08.11.2016
unpatched
OR   (Full Disclosure)
08.11.2016
patched
OR   (Full Disclosure)
08.11.2016
unpatched
OR   (Full Disclosure)
08.11.2016
patched
OR   (Full Disclosure)
08.11.2016
unpatched
XSS  (Full Disclosure)

Latest VIP Submissions

activecampaign.com
Reported by dim0k Twitter: @d1m0ck
Recommendations received: 21
Approved XSS vulnerabilities: 4121
Approved XSS vulnerabilities on VIP websites: 2644
on 27.03.2017
runkeeper.com
Reported by dim0k Twitter: @d1m0ck
Recommendations received: 21
Approved XSS vulnerabilities: 4121
Approved XSS vulnerabilities on VIP websites: 2644
on 27.03.2017
dialog.ua
Reported by OmniGooch Recommendations received: 2
Approved XSS vulnerabilities: 2570
Approved XSS vulnerabilities on VIP websites: 149
on 26.03.2017
star.com.tr
Reported by porthunter Twitter: @porthunter
Recommendations received: 1
Approved XSS vulnerabilities: 301
Approved XSS vulnerabilities on VIP websites: 127
on 26.03.2017
3djuegos.com
Reported by porthunter Twitter: @porthunter
Recommendations received: 1
Approved XSS vulnerabilities: 301
Approved XSS vulnerabilities on VIP websites: 127
on 26.03.2017
laposte.fr
Reported by porthunter Twitter: @porthunter
Recommendations received: 1
Approved XSS vulnerabilities: 301
Approved XSS vulnerabilities on VIP websites: 127
on 26.03.2017
itu.int
Reported by Over Approved XSS vulnerabilities: 635
Approved XSS vulnerabilities on VIP websites: 145
on 26.03.2017
urlaubsguru.de
Reported by secuninja Recommendations received: 2
Approved XSS vulnerabilities: 136
Approved XSS vulnerabilities on VIP websites: 6
on 26.03.2017
wko.at
Reported by L1M4R Approved XSS vulnerabilities: 201
Approved XSS vulnerabilities on VIP websites: 2
on 26.03.2017
meinestadt.de
Reported by secuninja Recommendations received: 2
Approved XSS vulnerabilities: 136
Approved XSS vulnerabilities on VIP websites: 6
on 26.03.2017

Latest Submissions

handwerker-versand.de
Reported by badmaxx Twitter: @_badmaxx_
Approved XSS vulnerabilities: 76
on 27.03.2017
backformen-onlineshop.de
Reported by badmaxx Twitter: @_badmaxx_
Approved XSS vulnerabilities: 76
on 27.03.2017
wogibtswas.de
Reported by badmaxx Twitter: @_badmaxx_
Approved XSS vulnerabilities: 76
on 27.03.2017
backwelt24.de
Reported by badmaxx Twitter: @_badmaxx_
Approved XSS vulnerabilities: 76
on 27.03.2017
intergastro.de
Reported by badmaxx Twitter: @_badmaxx_
Approved XSS vulnerabilities: 76
on 27.03.2017
wasteskins.com
Reported by Spam404 Twitter: @Spam404Online
Recommendations received: 61
Approved XSS vulnerabilities: 21980
Approved XSS vulnerabilities on VIP websites: 1556
on 27.03.2017
smarthealthshop.com
Reported by OmniGooch Recommendations received: 2
Approved XSS vulnerabilities: 2570
Approved XSS vulnerabilities on VIP websites: 149
on 27.03.2017
meilleurmobile.com
Reported by Gr00v_ Twitter: @Gr00v_
Approved XSS vulnerabilities: 11
Approved XSS vulnerabilities on VIP websites: 8
on 27.03.2017
prix.net
Reported by Gr00v_ Twitter: @Gr00v_
Approved XSS vulnerabilities: 11
Approved XSS vulnerabilities on VIP websites: 8
on 27.03.2017
b-abo.ru
Reported by OmniGooch Recommendations received: 2
Approved XSS vulnerabilities: 2570
Approved XSS vulnerabilities on VIP websites: 149
on 26.03.2017