Coordinated and Responsible Vulnerability Disclosure Free Bug Bounty Program 420,110 coordinated disclosures
228,413 fixed vulnerabilities
567 bug bounties with 1108 websites
11,373 researchers, 932 honor badges

SecuNinja Top VIP Security Researcher of the Month | Security Researcher Profile


Security researcher SecuNinja has already helped fix 3271 vulnerabilities.



Researcher reputation:  860

Real name:
SecuNinja

About me:
white-hat and I'm nice :)

How to contact me:
English or German:

[email protected]
https://twitter.com/secuninja

Certifications & Diplomas:
CCNA and others

Experience in Application Security
3-5 years

Award / Bug Bounty I prefer:
Feel free to provide Bug Bounty:
PayPal, Vouchers, BTC, public recognition, tweets or any kind of swag

Halls of Fame:
listed on my website https://secu.ninja

Follow me on:
Twitter

Recommendations and Acknowledgements | Full List:

    29 June, 2017
     1und1 Andreas Maurer from 1&1 Internet:
Secuninja reported a severe vulnerability on our website. He was fast, polite and professional. A great help and much appreciated.
    12 May, 2019
     CouriernetI Alexander Janussek from Couriernet GmbH:
Secuninja helped us fix the vulnerability on our website. He replied to all our emails in a very friendly, professional and patient way. He provided us all the technical details to solve the problems. Thanks a lot for that. Great job.
    1 April, 2019
     cyberday_gmbh DLO from CYBERDAY GmbH:
thanks for reporting
    23 November, 2018
     testberichteDE Andreas S from Testberichte.de:
Hi SecuNinja, thank you very much for your information on our vulnerability! This helps us keeping our website secure.
    12 November, 2018
     Tgirl_Christin Christin Löhner from Akademie für Sport und Gesundheit:
Thanks to SecuNinja, who has found a vulnerability on our website. After claiming the site here on OpenBugBounty and so getting the information about the vulnerability, I was able to fix it in seconds. Thanks again, for hunting! Christin
    10 October, 2018
     GeorgiHristov George Hristov from Webit.org:
Many thanks to SecuNunja for fast and helpful response about problems of our website.
    17 September, 2018
     RajatAr51352684 Rajat from ESCADA SE:
thanks a lot for reporting security vulnerability in our website. Great work and very supportive in case of additional questions.
    12 September, 2018
     endurit1 Christian from endurit gmbh:
Thank you, SecuNinja, for pointing out a vulnerability on one of our websites. And for the professional support.
    17 July, 2018
     winterreise1978 Gregor from Gregor:
Thank you for alerting to an XSS vulneribilty on our site. We fixed it thanks to your alert.
    11 July, 2018
     cms_admin CMSAdmin from European University Viadrina:
Secuninja has helped us to secure our website. Quickly, friendly and most of all professional.
Thank You!
    27 June, 2018
     gerryfort Gerry from BikeBug:
Secuninja reported a vulnerability on our website. He was polite to deal with and professional. A great help and much appreciated. Highly recommend!
    20 June, 2018
     medizinfuchs Tobi from medizinfuchs GmbH:
Thank you very much for finding of a XSS Vulnerability on our website!
Great job, very competent, friendly and quick replies.
    4 June, 2018
     SPARintheUK Katherine from SPAR UK:
Thanks SecunNinja for highlighting an XSS vulnerability, and for the prompt and friendly interactions
    30 May, 2018
     borox M. Bloch from Mistershoplister.de:
Thank you SecuNinja, for the finding of a XSS Vulnerability on my website!
Super job, very competent, friendly and quick replies.
    24 May, 2018
     eulenberger Sven from netclusive GmbH:
Thanks for the great support!
    23 April, 2018
     RealArties RealArties from ASC Computersysteme:
Thank you for finding and reporting an XSS Vulnerability on our website. And thank you SecuNinja for the provided additional informations thus enabling us to fix the issue and make our site safer for our visitors!
    21 April, 2018
     StadlerITS H. Stadler from Stadler ITS:
SecuNinja uncovered a XSS vulnerability in a Magento extension of a shop from one of our clients. The contact with him was very professional and friendly, thanks a lot from our side!
    19 April, 2018
     kevinBaseCom Kevin from Online Commerce:
Thank you for alerting to an XSS vulneribilty on our site
    19 April, 2018
     CONET_Group Simon Vieth from CONET:
Thank you SecuNinja for identifying and reporting an XSS Vulnerability on our website, thus enabling us to fix the issue and make our site safer for us and our visitors! --- Vielen Dank dafür, dass Sie uns auf die XSS-Sicherheitslücke auf unserer Website aufmerksam gemacht und damit dazu beigetragen haben, unsere Seite sicherer zu machen!
    28 March, 2018
     DIASoftware Christopher Meyering from DIA Connecting Software GmbH & Co. KG:
Big "thank you" to SecuNinja for not only finding some XSS-issues in our applications, but also for smart and fast answers!
    27 March, 2018
     Halotho Thomas from UDG:
Thank you for finding an XSS security leak on one of our customers websites.
    20 March, 2018
     feinkonzept Volker from Trion GmbH:
Thanks to SecuNinja for reporting a XSS vulnerability on a website of our client. He is doing a great job and the contact was very friendly and helfpful. Thumbs up!
    19 March, 2018
     Ruegenwalder Thomas from Rügenwalder Mühle:
Thank you SecuNinja for identifying a XSS Vulnerability on our Website. Thanks a lot for your help!
    2 March, 2018
     snudhh Thomas from snud:
Thank you for identifying two XSS Vulnerability on our Websites and the provided additional informations. Very professional ! Thanks a lot !
    27 February, 2018
     ziduniwien Computer Center from University of Vienna:
Dear SecuNinja,
The University of Vienna would like to thank you for your valuable contribution in finding multiple website security issues.
Your input is highly welcome and helps to raise the security level of our educational institution.
Servus and greetings from Vienna, Austria.
    19 February, 2018
     thorp88 Miles from Banana Moon:
Big thanks SecuNinja for reporting a XSS vulnerability and the speedy response!
    11 February, 2018
     Forumotion Team from Forumotion:
Secuninja helped us to fix a XSS vulnerability, very kind, fast and helpful. Many thanks !
    25 January, 2018
     alsoisp Alex from AlSoISP:
Thank you Secuninja for reporting a XSS vulnerability on our website!
Danke Secuninja für die Meldung einer XSS-Sicherheitslücke auf unserer Website!
    9 January, 2018
     FabianSchorb Fabian :
Thank you for identifying a XSS Vulnerability on our Website and the provided additional information!
    19 December, 2017
     derhesse47 Thomas Z. from AerzteZeitung:
Secuninja identified an issue on our site. He offered help to fix the problem. Thanks a lot.
    28 November, 2017
     BstockerS Benjamin from SolNet:
We got a a reply from SecuNinja very quickly. He described the XSS Vulnerability very clear so we could fix it. Very friendly contact. Thanks a lot!
    19 November, 2017
     hhilbert66 Heiko from Informunity:
Many Thanks for reporting a XSS vulnerability on our domain. Contact was very friendly and helpful to fix that vulnerability. I recommend him for his good work!
    6 November, 2017
     DerCraig derCraig from somewebsite:
Thanks to @SecuNinja for finding XSS on a customers website! :)
    3 November, 2017
     AckenKuehn F. Kühn from ZZ:
Thanks for closing the XSS vulnerability, fast and professional!
    30 October, 2017
     wiknf Marcel Junemann from nsv-online.de:
Thank you Secuninja for reporting a XSS vulnerability on our website! Much appreciated!
    10 October, 2017
     pixelit Florian from PIXELit:
Secuninja found a XSS vulnarabilty. Contact was helpful and friendly and we werde able to fix the problem quickly. Thanks.
    9 October, 2017
     Gastrodax Philipp from New Gastroline:
Vielen Dank nochmal!
    2 October, 2017
     ARMistice Alexander from BrettspielWelt:
Secuninja found XSS vulnerability on our WebSite, and we are very grateful about pointing out to this problem. He is very friendly, helpful and actively interessted in solving the problems. I recommend him highly for his work!
    28 September, 2017
     seeli Niels from TRIXIE Heimtierbedarf:
Secuninja reported a XSS vulnerability on our website. With the proof of concept the vulnerability was found very fast. He offered to help closing the vulnerability. many thanks!
    21 September, 2017
     NETGAMESGera Markus from NETGAMES.de:
Thank you, Bug is fixed :-)
    19 September, 2017
     ImperiaRZ Michael from Universität Regensburg:
Thank you, secuninja, for reporting a xss vulnerability on one of our Domains. Also thanks and big pespect for your fast response and the professional and cooperative contact.
    4 September, 2017
     hqentertain Dominic from HQ Entertainment Network:
Thanks very much for your researches and your work Secuninja! We really appreciate your hints and your prompt responses. Very professional and good work!
    27 August, 2017
     eventrakete Thomas H. from eventrakete.de:
Many thanks to secuninija! He helped us to find a XSS vulnerability on our website. Keep up the good work!
    24 August, 2017
     FowlerSack andre from iriedaily.de:
thanx for your hint and your good work
    16 August, 2017
     MischkaMcLovin Stegemann from Spion Media GmbH:
Fast response. Great support. Perfect!
Thank's a lot!
    10 August, 2017
     ulrich_heck Ulrich Heck from Mirabit GmbH:
Secuninja helped us to make our website safer!
Thank you very much!!!
    27 July, 2017
     DIYDoctor James from DIY Doctor:
Spotted an XSS vulnerability on our site and notified us in a very professional and informative manner, what an absolute star!!
Hugely recommended for being both knowledgeable and friendly and polite!
    24 July, 2017
     Liquid_Maker Martin from LiquidMaker:
Many thanks to secuninja! He helped me to identify a vulnerability on my page.
    24 July, 2017
     jumkde Juergen from jumk.de:
Many thanks to secuninja for finding and helping to fix a XSS vulnerability.
    12 July, 2017
     wirthundhorn Operator from Wirth & Horn:
Thank you for reporting XSS vulnerabilities on our customers' websites.
Keep up the good work, helps us a lot!
    11 July, 2017
     tarif4you Alexander Gut from tarif4you.de:
Thank you very much, Secuninja, for your very professional work. Friendly and quick contact and good explanation about a security vulnerability founded on our website, so we fix it.
    1 July, 2017
     Jett_Rink Stefan from plattentests.de:
Many thanks to secuninja! He helped us to identify a vulnerability on our page.
    29 June, 2017
     telemarkup Florian Bittner from Russmedia Digital:
Secuninja found a XSS vulnerability on one of our clients sites.
He treated the issue professional and confidential and was very kind and friendly when we contacted him for details.

Thank you very much for all your efforts and keep up the good work!
    16 June, 2017
     cms_admin CMSAdmin from European University Viadrina:
Secuninja helped us to make our website more secure, even when we thought it wouldn't be possible or necessary (well, it always is :)
Thank You for your help and professionalism!
    13 June, 2017
     SayYeahNow Christopher from kernpunkt:
You found an XSS vulnerability in one of our clients sites and you handled it very confidential. And also, you gave us the crucial hint. Our customer, and also we, are very happy that we could fix this with your help.

Thank you so much!
    7 June, 2017
     tvinfode Admin from TVinfo:
Very fast, friendly and knowledgeable!
    31 May, 2017
     bdiekert Bjoern from Borkenstein Plus:
Secuninja found an XSS vulnerability in one of our clients sites. This was handled very responsible and I'am happy we could fix this.

Thank you so much!
    28 May, 2017
     ChrisFr95162402 Chris from Hikma:
Thanks for reporting the vulnerability on our website and assisting in its resolution. An invaluable service.
    20 May, 2017
     vlasceanu_d divsro from AV:
Thank you for reporting a security vulnerability on our website and for giving us the information needed in order to patch it. We really appreciate your help!
    3 May, 2017
     DirkRoehrborn Dirk Röhrborn from Communardo:
Thank you very much for reporting a security vulnerability on our website that allowed us to take action quickly and resolve the issue with the component vendor. Your work ist highly appreciated!
    14 April, 2017
     MarkDatter Jason from Fluke Calibration:
M found a legitimate XSS vulnerability on our site and worked with us to resolve it. We were very grateful for the discovery - thanks!
    27 March, 2017
     MarkZimmermannT Mark from TROX:
Reported XSS vulnerability could be fixed immediately with his help. We are grateful for his help.
    23 March, 2017
     RobmanMK RobmanMK from MK:
Thank you very much for reporting a security vulnerability on our website. Keep up the good work!
    22 March, 2017
     cpjolly Chris from sommer cable:
M really helped us out after he reported the XSS issue with our site and helped us close the vulnerability.

Thanks again

Please login via Twitter to add a recommendation

Honor Badges


Number of Secured Websites

10+ Websites
50+ Websites
500+ Websites
WEB SECURITY VETERAN
1000+ Websites

Advanced Security Research

WAF Bypasser
CSRF Master
30+ Reports
AppSec Logic Master
30+ Reports
Fastest Fix
Fix in 24 hours

Outstanding Achievements

Secured OBB
OBB Advocate
Improved OBB

Commitment to Remediate and Patch

Patch Master
55% Patched
Patch Guru
65% Patched
Patch Lord
75% Patched

Recommendations and Recognition

REPUTABLE
10+ Recommends
FAMOUS
25+ Recommends
GLOBALLY TRUSTED
50+ Recommends

Distinguished Blog Author

1 Post
3 Posts
5+ Posts

Research Statistics



Total reports:7359
Total reports on VIP sites:332
Total patched vulnerabilities:3271
Total vulnerabilities on Hold (Open Bug Bounty):251
Recommendations received:64
Active since:13.03.2017
Top Security Researcher Awards: Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month
Top VIP Security Researcher Awards: Top VIP Security Researcher of the Week

Open Bug Bounty Certificate





No posts in blog yet


Reported Vulnerabilities

All Submissions VIP Submissions

Domain Reported Status Type
12.08.2019
On Hold
Cross Site Scripting
12.08.2019
On Hold
Cross Site Scripting
10.08.2019
On Hold
Cross Site Scripting
10.08.2019
On Hold
Cross Site Scripting
10.08.2019
On Hold
Cross Site Scripting
09.08.2019
On Hold
Cross Site Scripting
09.08.2019
On Hold
Cross Site Scripting
09.08.2019
On Hold
Cross Site Scripting
09.08.2019
On Hold
Cross Site Scripting
09.08.2019
On Hold
Cross Site Scripting
09.08.2019
On Hold
Cross Site Scripting
09.08.2019
On Hold
Cross Site Scripting
09.08.2019
On Hold
Cross Site Scripting
09.08.2019
On Hold
Cross Site Scripting
09.08.2019
On Hold
Cross Site Scripting
09.08.2019
On Hold
Cross Site Scripting
09.08.2019
On Hold
Cross Site Scripting
09.08.2019
On Hold
Cross Site Scripting
08.08.2019
On Hold
Cross Site Scripting
08.08.2019
On Hold
Cross Site Scripting

  Latest Patched

 22.08.2019 scielo.org
 22.08.2019 gamer-info.com
 22.08.2019 tjrs.jus.br
 22.08.2019 fnde.gov.br
 22.08.2019 casinosolverde.pt
 22.08.2019 1111.com.tw
 22.08.2019 wtop.com
 22.08.2019 fedex.com
 22.08.2019 photobucket.com
 21.08.2019 smores.tv

  Latest Blog Posts

19.08.2019 by ismailtsdln
IBM - Cross site Scripting [XSS]
15.08.2019 by thevivekkryadav
HOW I WAS BYPASSED CLOUDFLARE WAF
13.08.2019 by Renzi25031469
XSSCon - XSS Tool @Kitploit
13.08.2019 by Cur1S3
I Found a multiple xss on https://clickmeeting.com
13.08.2019 by ZIKADS
xss at anghami.com

  Recent Recommendations

    21 August, 2019
     aaccomazzi:
One more XSS bug discovered and patched thanks to Gh05tPT. Much appreciated!
    21 August, 2019
     SelectLine_GmbH:
Thank you, Rooghz, for pointing out a vulnerability on one of our websites.
    20 August, 2019
     runlevelone:
Thank you for the reported vulnerability! I thought I had those XSS pitfalls covered, but aparently not.
    20 August, 2019
     fukubacchi:
Thanks for reporting the issue and the vulnerability details!!!
    19 August, 2019
     maxiorel:
Thanks for reporting the problem and the vulnerability details.