Infosec Institute

Open Bug Bounty mentioned in the
Top 6 Bug Bounty programs of
2022 by the InfoSec Institute

The Hacker News

Open Bug Bounty named among the
Top 5 Bug Bounty programs of 2021
by The Hacker News

For security researchers
Report a Vulnerability
Submit, help fixing, get kudos.
For website owners
Start a Bug Bounty
Run your bounty program for free.
1,754,069 coordinated disclosures
1,440,694 fixed vulnerabilities
2,053 bug bounty programs, 3,988 websites
52,884 researchers, 1,711 honor badges

Peter17 | Security Researcher Profile


Security researcher Peter17 has already helped fix 31 vulnerabilities.



Researcher reputation:  160

Real name:
Peter Potrowl

About me:
Web developer, writer and photographer on Wikipedia, open-source software contributor (on PHP and Python tools) and... bug bounty hunter!

Contact email:
[email protected]

Certifications & Diplomas:
buymeacoffee.com/peter17

Experience in Application Security
1-3 years

Award / Bug Bounty I prefer:
If you appreciate my work, please recommend on my profile.
Bounty hunting is very time-consuming, financial compensations on paypal.me/Peter017 or buymeacoffee.com/peter17 are very welcome! Thanks!

Follow me on:
Twitter

Ethics and Rules:
Peter Potrowl is required to abide by the ethics and rules of the Open Bug Bounty project. If you reasonably believe that rules are not respected, please report this to us.

Recommendations and Acknowledgements

@MrMoney84315336     21 October, 2022
    Twitter MrMoney84315336 Developer from Mr-Money Software GmbH:
Thanks for responsible and coordinated disclosure of the vulnerabilities.
@CERT_rlp     22 December, 2021
    Twitter CERT_rlp CERT-rlp from CERT-rlp:
The team of CERT-rlp would like to thank Peter17 for a responsible and coordinated disclosure of vulnerabilities
@MonoIsCool     3 October, 2023
    Twitter MonoIsCool HellBlazer from Metal Archives:
Helpful report and good communication. Thanks!
@KelvinLomberg     11 May, 2023
    Twitter KelvinLomberg Kelvin from WorldFront:
Peter17 was professional in his vulnerability disclosure. Appreciate the help with our security.
@cloudrexx     14 March, 2023
    Twitter cloudrexx Thomas from Cloudrexx AG:
Many thanks to Peter17 for the professional, helpful and confidential disclosure of the vulnerabilities.
@DeBuecher     3 June, 2022
    Twitter DeBuecher BDerix from buecher.de:
Peter was of good help

Please login via Twitter to add a recommendation

Honor Badges


Number of Secured Websites

10+ Secured Websites Badge
50+ Secured Websites Badge
500+ Secured Websites Badge
Web Security Veteran Badge
10+ Websites
50+ Websites
500+ Websites
WEB SECURITY VETERAN
1000+ Websites

Advanced Security Research

WAF Bypasser Badge
CSRF Master Badge
AppSec Logic Master Badge
Fastest Fix Badge
WAF Bypasser
CSRF Master
30+ Reports
AppSec Logic Master
30+ Reports
Fastest Fix
Fix in 24 hours

Outstanding Achievements

Secured OBB Badge
OBB Advocate Badge
Improved OBB Badge
Secured OBB
OBB Advocate
Improved OBB

Commitment to Remediate and Patch

Patch Master Badge
Patch Guru Badge
Patch Lord Badge
Patch Master
55% Patched
Patch Guru
65% Patched
Patch Lord
75% Patched

Recommendations and Recognition

REPUTABLE Badge
FAMOUS Badge
GLOBALLY TRUSTED Badge
REPUTABLE
10+ Recommends
FAMOUS
25+ Recommends
GLOBALLY TRUSTED
50+ Recommends

Distinguished Blog Author

Distinguished Blog Author Badge
Distinguished Blog Author Badge
Distinguished Blog Author Badge
1 Post
3 Posts
5+ Posts

Research Statistics



Total reports:235
Total reports on VIP sites:9
Total patched vulnerabilities:31
Total vulnerabilities on Hold (Open Bug Bounty):11
Recommendations received:6
Active since:18.09.2021

Reported Vulnerabilities

All Submissions VIP SubmissionsFeatured Submissions




No posts in blog yet










  Latest Patched

 12.10.2024 abingdon-va.gov
 12.10.2024 riocuarto.gov.ar
 12.10.2024 achievers.edu.ng
 11.10.2024 ww3.arb.ca.gov
 11.10.2024 cocaldosul.sc.gov.br
 11.10.2024 sangao.sc.gov.br
 09.10.2024 rolexgrade.me
 09.10.2024 contracostavote.gov
 08.10.2024 activecampaign.com

  Latest Blog Posts

04.12.2023 by BAx99x
Unmasking the Power of Cross-Site Scripting (XSS): Types, Exploitation, Detection, and Tools
04.12.2023 by a13h1_
$1120: ATO Bug in Twitter’s
04.12.2023 by ClumsyLulz
How I found a Zero Day in W3 Schools
04.12.2023 by 24bkdoor
Hack the Web like a Pirate: Identifying Vulnerabilities with Style
04.12.2023 by 24bkdoor
Navigating the Bounty Seas with Open Bug Bounty

  Recent Recommendations

    11 October, 2024
    ol347:
He found a vulnerability on our site, it was well spotted, and he offered the information clearly in a very helpful manner. Thank you for the work, it allowed us to secure our site much more!
    4 October, 2024
    mods4cars:
A big THANK YOU to Dipu1a for bringing several XSS vulnerabilities on our website to our attention and giving helpful pointers how to fix. Greatly appreciated and highly recommended!
    23 September, 2024
    ajk99:
Found a valid issue. Clear and rapid communication.
    21 September, 2024
    ironblack:
Andrea found an XSS bug in one of our forms which was left over after some security fixes we did. Although the openbugbounty staff was not able to reproduce the issue, the issue was there and he promptly contacted us to tell the issue and have us fixed, in a pure collaborative and responsible disclosure fashion. Thank you again for your precious input!
    19 September, 2024
    hardg:
The researcher gave a very clear report, including steps to reproduce, and also communicated clearly and promptly. Many thanks for your research and coordinated disclosure!