Coordinated and Responsible Vulnerability Disclosure Free Bug Bounty Program 340,761 coordinated disclosures
196,486 fixed vulnerabilities
459 bug bounties with 932 websites
9,606 researchers, 870 honor badges

PedroR | Security Researcher Profile


Security researcher PedroR has already helped fix 150 vulnerabilities.



Researcher reputation:  90

Real name:
Pedro Rodrigues

About me:
Computer Science Student. InfoSec enthusiast.
I love to break stuff. Opinions are my own.

How to contact me:
Please contact me using my email address:
[email protected]

Certifications & Diplomas:
Independent Research

Experience in Application Security
1-3 years

Award / Bug Bounty I prefer:
Credit/Goodies

Recommendations and Acknowledgements

    22 March, 2019
     jcfmachado José Machado from GRA:
Thank you for your time and notification.
    23 October, 2018
     joaoluisagmail1 João Luis from Tranquilidade:
I would like to thank Pedro for his contribution, with his time and knowledge so that we can surf the net more safely.
A big thank you.
    28 October, 2017
     tripdatabase Jon Brassey from Trip Database:
Great work Pedro! I appreciate you alerting us to the XSS (Cross-Site Scripting) Vulnerability and for helping us to fix the problem. You've been a pleasure to work with!
    20 October, 2017
     ricardolcpinto Ricardo Pinto from RB:
Thank you Pedro for your help! I would recommend Pedro in a heartbeat!
    6 October, 2017
     cultpens Michael from Cult Pens:
Thanks to Pedro for finding and reporting a vulnerability on our site. Pedro gave us the information we needed to fix the problem quickly and easily, and has been very pleasant and helpful to deal with.
    19 September, 2017
     gezpage Gez Page from Mind Tools:
Thanks for helping us get an issue resolved ASAP Pedro.
    13 September, 2017
     MikeyD017 Mike Dickin from Hempel:
I would like to thank Pedro for his notification of a vulnerability on our Corporate website.

Please login via Twitter to add a recommendation

Awards and Achievements


Number of Secured Websites

10+ Websites
50+ Websites
500+ Websites
WEB SECURITY VETERAN
1000+ Websites

Advanced Security Research

WAF Bypasser
CSRF Master
30+ Reports
AppSec Logic Master
30+ Reports
Fastest Fix
Fix in 24 hours

Outstanding Achievements

Secured OBB
OBB Advocate
Improved OBB

Commitment to Remediate and Patch

Patch Master
55% Patched
Patch Guru
65% Patched
Patch Lord
75% Patched

Recommendations and Recognition

REPUTABLE
10+ Recommends
FAMOUS
25+ Recommends
GLOBALLY TRUSTED
50+ Recommends

Distinguished Blog Author

1 Post
3 Posts
5+ Posts

Research Statistics



Total reports:360
Total reports on VIP sites:21
Total patched vulnerabilities:150
Recommendations received:7
Active since:14.07.2017

Open Bug Bounty Certificate





No posts in blog yet


Reported Vulnerabilities

All Submissions VIP SubmissionsFeatured Submissions

Domain Reported Status Type
28.01.2019
patched
Cross Site Scripting
17.01.2019
unpatched
Cross Site Scripting
16.01.2019
patched
Cross Site Scripting
14.12.2018
unpatched
Cross Site Scripting
05.12.2018
unpatched
Cross Site Scripting
03.12.2018
patched
Cross Site Scripting
28.11.2018
unpatched
Cross Site Scripting
28.11.2018
unpatched
Cross Site Scripting
28.11.2018
unpatched
Cross Site Scripting
27.11.2018
patched
Cross Site Scripting
20.11.2018
patched
Cross Site Scripting
05.11.2018
unpatched
Cross Site Scripting
18.10.2018
patched
Cross Site Scripting
03.10.2018
patched
Cross Site Scripting
01.10.2018
unpatched
Open Redirect
01.10.2018
unpatched
Cross Site Scripting
26.09.2018
unpatched
Cross Site Scripting
26.09.2018
patched
Cross Site Scripting
24.09.2018
patched
Cross Site Scripting
24.09.2018
patched
Cross Site Scripting

  Latest Patched

 21.04.2019 anidb.net
 21.04.2019 bath.ac.uk
 21.04.2019 americangreetings.com
 21.04.2019 miur.gov.it
 20.04.2019 goethe.de
 20.04.2019 anzdoc.com
 19.04.2019 gq.com
 19.04.2019 st-andrews.ac.uk
 19.04.2019 indeed.com
 19.04.2019 fzmovies.net

  Latest Blog Posts

04.04.2019 by Gh05tPT
XSS alert() variants
03.04.2019 by ismailtsdln
PHP Security Check List [ EN ]
02.04.2019 by Open Bug Bounty
API for bug bounty owners
02.04.2019 by MiguelSantareno
Google Dorks to find open redirects:
02.04.2019 by MiguelSantareno
Cross Site Script angular payloads:

  Recent Recommendations

    21 April, 2019
     AniDBStatus:
Thank you for reporting this bug. We appreciate your work!
    21 April, 2019
     AniDBStatus:
Thank you for reporting this bug. We appreciate your work!
    18 April, 2019
     myparadisio:
Thanks k0t, for pointed out two XSS vulnerabilities on our website!
Your input was very much appreciated!
    17 April, 2019
     rhyswynne:
acelakshitverma helped identify a bug on my hobby site and fixed it. Thanks!
    16 April, 2019
     Danny76084307:
Hallo Armin,
vielen Dank für Deinen Einsatz!
Durch deinen Hinweis konnten wir zwei Lücken schließen.
Schöne Grüße
Danny