Coordinated and Responsible Vulnerability Disclosure Free Bug Bounty Program 245,650 coordinated disclosures
126,235 fixed vulnerabilities
199,019 websites, 17,022 VIP websites
6,566 researchers, 6,915 subscribers

MiguelSantareno | Security Researcher Profile


Security researcher MiguelSantareno has already helped fix 682 vulnerabilities.



Researcher reputation:  140

Real name:
MiguelSantareno

How to contact me:
[email protected]
https://hackerone.com/miguel_santareno
https://www.hackthebox.eu/profile/19625

Certifications & Diplomas:
CEH (Certified Ethical Hacker)
CPTE (Certified Penetration Testing Engineer)

Award / Bug Bounty I prefer:
Money
Recommendations
Acknowledgements
Hall of Fame

Halls of Fame:
Defining stars
Midas
Vodafone Portugal
Oracle:http://www.oracle.com/technetwork/security-advisory/cpuapr2018-36780.
Bosch:https://psirt.bosch.com/en/acknowledgments.html
NOS

Recommendations and Acknowledgements

    17 July, 2018
     DragonSGA Stefan from Cadenas:
Miguel has found a XSS vulnerability in our search page. The example he gave helped to test our fix. Thank you!
    15 May, 2018
     Lewisdh47 Dave from Avis:
I would like to thank Miguel for identifying the security issue, providing all relevant information to enable a fix to be deployed and confirming the resolution. Incredibly useful to get his input on the issue and his very helpful steps to reproduce were appreciated. Very helpful and friendly.
    9 May, 2018
     bubblegate James Murrells from Bubblegate:
Identified an XSS vulnerability on our website and was very friendly and supportive! Many thanks.
    26 September, 2017
     pmiguelr75 Pedro Rodrigues from Bluesoft:
Identified an XSS vulnerability in one website and show us where is it.
After that made changes in code to solve it
All solved.
Great help, great support.
    22 September, 2017
     thenrique Tulio from Spirit Fanfics:
dentified an XSS vulnerability in our website and provided all the details in order to solve it. Very friendly. Thanks
    22 September, 2017
     jonnyowls Jonathan from C5:
Miguel reported a XSS vulnerability in our website, it was remediated and retested very quickly. Excellent service
    1 September, 2017
     maswb19 Jay from PSA:
Helpfully notified us of an XSS vulnerability in one of our sites with the details we needed to replicate it and responded quickly to emails.
    10 August, 2017
     tgljamesuk James from The Graphics Line:
Miguel identified an XSS vulnerability one of our websites, provided a step by step guide to reproduce the issue along with information on how to resolve it. He also re-tested after we applied a patch. Thank you Miguel!
    27 July, 2017
     ISOatUO Information Security Office from University of Otago:
Provided a simple proof of concept, allowing us to identify the cause easily and deploy a fix quickly.
    26 July, 2017
     kovyrin Oleksiy Kovyrin from Swiftype Inc:
Miguel has identified an XSS vulnerability on our website, provided us with necessary details to reproduce the issue and was very helpful re-testing after we applied the fixes. Thank you.

Shows the first 10 recommendations. See all.

Please login via Twitter to add a recommendation

Awards and Achievements


Number of Secured Websites

10+ Websites
50+ Websites
500+ Websites
WEB SECURITY VETERAN
1000+ Websites

Advanced Security Research

WAF Bypasser
CSRF Master
30+ Reports
AppSec Logic Master
30+ Reports
Fastest Fix
Fix in 24 hours

Outstanding Achievements

Secured OBB
OBB Advocate
Improved OBB

Commitment to Remediate and Patch

Patch Master
55% Patched
Patch Guru
65% Patched
Patch Lord
75% Patched

Recommendations and Recognition

REPUTABLE
10+ Recommends
FAMOUS
25+ Recommends
GLOBALLY TRUSTED
50+ Recommends

Research Statistics



Open Bug Bounty Certificate:Download
Total reports:1078
Total reports on VIP sites:85
Total patched vulnerabilities:682
Total vulnerabilities on Hold (Open Bug Bounty):3
Recommendations received:14
Active since:20.06.2017

Reported Vulnerabilities

All Submissions VIP Submissions

Domain Reported Status Type
04.06.2018
On Hold
Cross Site Scripting
02.06.2018
On Hold
Cross Site Scripting
26.05.2018
patched
Cross Site Scripting
28.04.2018
On Hold
Cross Site Scripting
16.04.2018
patched
Cross Site Scripting
16.04.2018
unpatched
Cross Site Scripting
16.04.2018
unpatched
Cross Site Scripting
14.04.2018
patched
Cross Site Scripting
07.04.2018
patched
Cross Site Scripting
29.03.2018
patched
Cross Site Scripting
28.03.2018
unpatched
Cross Site Scripting
28.03.2018
unpatched
Cross Site Scripting
28.03.2018
unpatched
Cross Site Scripting
22.02.2018
unpatched
Cross Site Scripting
22.02.2018
patched
Cross Site Scripting
22.02.2018
unpatched
Cross Site Scripting
22.02.2018
unpatched
Cross Site Scripting
20.02.2018
unpatched
Cross Site Scripting
18.02.2018
unpatched
Cross Site Scripting
01.02.2018
unpatched
Cross Site Scripting


  Latest VIP Submissions

cinemaxxl.de
Reported by ELProfesor Helped patch 823 vulnerabilities
Received 6 Coordinated Disclosure badges
Received 37 recommendations
on 20.07.2018
psychologytoday.com
Reported by barbaart_ Helped patch 74 vulnerabilities
Received 3 Coordinated Disclosure badges
Received 1 recommendations
on 20.07.2018
generation-nt.com
Reported by ark1nar Helped patch 77 vulnerabilities
Received 4 Coordinated Disclosure badges
Received 1 recommendations
on 20.07.2018
boattrader.com
Reported by ELProfesor Helped patch 823 vulnerabilities
Received 6 Coordinated Disclosure badges
Received 37 recommendations
on 20.07.2018
univ-paris3.fr
Reported by Gh05tPT Helped patch 515 vulnerabilities
Received 6 Coordinated Disclosure badges
Received 12 recommendations
on 20.07.2018
onisep.fr
Reported by Maximum Helped patch 9 vulnerabilities
Received 1 Coordinated Disclosure badges
Received 2 recommendations
on 20.07.2018
property24.com
Reported by dak Helped patch 1808 vulnerabilities
Received 7 Coordinated Disclosure badges
Received 32 recommendations
on 20.07.2018
ytb-mp3-converter.org
Reported by drok3r Helped patch 27 vulnerabilities
Received 1 Coordinated Disclosure badges
on 20.07.2018
ibiblio.org
Reported by OmniGooch Helped patch 2263 vulnerabilities
Received 5 Coordinated Disclosure badges
Received 8 recommendations
on 20.07.2018
agroinform.hu
Reported by KhanJanny Helped patch 190 vulnerabilities
Received 6 Coordinated Disclosure badges
Received 12 recommendations
on 20.07.2018



  Latest Submissions

messagerie.univ-tlse3.fr
Reported by Gh05tPT Helped patch 515 vulnerabilities
Received 6 Coordinated Disclosure badges
Received 12 recommendations
on 20.07.2018
ups-tlse.fr
Reported by Gh05tPT Helped patch 515 vulnerabilities
Received 6 Coordinated Disclosure badges
Received 12 recommendations
on 20.07.2018
sangokushi-rush.gamerch.com
Reported by stfn Helped patch 146 vulnerabilities
Received 3 Coordinated Disclosure badges
Received 1 recommendations
on 20.07.2018
megasmash.gamerch.com
Reported by stfn Helped patch 146 vulnerabilities
Received 3 Coordinated Disclosure badges
Received 1 recommendations
on 20.07.2018
fibo.com
Reported by Cyberanteater Helped patch 8 vulnerabilities
Received 0 Coordinated Disclosure badges
Received 5 recommendations
on 20.07.2018
priconne-redive.gamerch.com
Reported by stfn Helped patch 146 vulnerabilities
Received 3 Coordinated Disclosure badges
Received 1 recommendations
on 20.07.2018
teioh.gamerch.com
Reported by stfn Helped patch 146 vulnerabilities
Received 3 Coordinated Disclosure badges
Received 1 recommendations
on 20.07.2018
werewolf.gamerch.com
Reported by stfn Helped patch 146 vulnerabilities
Received 3 Coordinated Disclosure badges
Received 1 recommendations
on 20.07.2018
tower-rising.gamerch.com
Reported by stfn Helped patch 146 vulnerabilities
Received 3 Coordinated Disclosure badges
Received 1 recommendations
on 20.07.2018
aracmuaye.gamerch.com
Reported by stfn Helped patch 146 vulnerabilities
Received 3 Coordinated Disclosure badges
Received 1 recommendations
on 20.07.2018