Coordinated and Responsible Vulnerability Disclosure Free Bug Bounty Program 318,215 coordinated disclosures
186,560 fixed vulnerabilities
374 bug bounties with 812 websites
8,830 researchers, 316 honor badges

SecuNinja Top VIP Security Researcher of the Month | Security Researcher Profile


Security researcher SecuNinja has already helped fix 3074 vulnerabilities.



Researcher reputation:  780

Real name:
SecuNinja

About me:
white-hat and I'm nice :)

How to contact me:
English or German:

[email protected]
https://twitter.com/secuninja

Certifications & Diplomas:
CCNA and others

Experience in Application Security
3-5 years

Award / Bug Bounty I prefer:
Feel free to provide Bug Bounty:
PayPal, Vouchers, BTC, public recognition, tweets or any kind of swag

Halls of Fame:
listed on my website https://secu.ninja

Follow me on:
Twitter

Recommendations and Acknowledgements

    29 June, 2017
     1und1 Andreas Maurer from 1&1 Internet:
Secuninja reported a severe vulnerability on our website. He was fast, polite and professional. A great help and much appreciated.
    23 November, 2018
     testberichteDE Andreas S from Testberichte.de:
Hi SecuNinja, thank you very much for your information on our vulnerability! This helps us keeping our website secure.
    12 November, 2018
     Tgirl_Christin Christin Löhner from Akademie für Sport und Gesundheit:
Thanks to SecuNinja, who has found a vulnerability on our website. After claiming the site here on OpenBugBounty and so getting the information about the vulnerability, I was able to fix it in seconds. Thanks again, for hunting! Christin
    10 October, 2018
     GeorgiHristov George Hristov from Webit.org:
Many thanks to SecuNunja for fast and helpful response about problems of our website.
    17 September, 2018
     RajatAr51352684 Rajat from ESCADA SE:
thanks a lot for reporting security vulnerability in our website. Great work and very supportive in case of additional questions.
    12 September, 2018
     endurit1 Christian from endurit gmbh:
Thank you, SecuNinja, for pointing out a vulnerability on one of our websites. And for the professional support.
    17 July, 2018
     winterreise1978 Gregor from Gregor:
Thank you for alerting to an XSS vulneribilty on our site. We fixed it thanks to your alert.
    11 July, 2018
     cms_admin CMSAdmin from European University Viadrina:
Secuninja has helped us to secure our website. Quickly, friendly and most of all professional.
Thank You!
    27 June, 2018
     gerryfort Gerry from BikeBug:
Secuninja reported a vulnerability on our website. He was polite to deal with and professional. A great help and much appreciated. Highly recommend!
    20 June, 2018
     medizinfuchs Tobi from medizinfuchs GmbH:
Thank you very much for finding of a XSS Vulnerability on our website!
Great job, very competent, friendly and quick replies.

Shows the first 10 recommendations. See all.

Please login via Twitter to add a recommendation

Awards and Achievements


Number of Secured Websites

10+ Websites
50+ Websites
500+ Websites
WEB SECURITY VETERAN
1000+ Websites

Advanced Security Research

WAF Bypasser
CSRF Master
30+ Reports
AppSec Logic Master
30+ Reports
Fastest Fix
Fix in 24 hours

Outstanding Achievements

Secured OBB
OBB Advocate
Improved OBB

Commitment to Remediate and Patch

Patch Master
55% Patched
Patch Guru
65% Patched
Patch Lord
75% Patched

Recommendations and Recognition

REPUTABLE
10+ Recommends
FAMOUS
25+ Recommends
GLOBALLY TRUSTED
50+ Recommends

Research Statistics



Total reports:6627
Total reports on VIP sites:321
Total patched vulnerabilities:3074
Total vulnerabilities on Hold (Open Bug Bounty):293
Recommendations received:62
Active since:13.03.2017
Top Security Researcher Awards: Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month
Top VIP Security Researcher Awards: Top VIP Security Researcher of the Week

Open Bug Bounty Certificate





No posts in blog yet


Reported Vulnerabilities

All Submissions VIP Submissions

Domain Reported Status Type
02.02.2019
On Hold
Improper Access Control 
02.02.2019
On Hold
Improper Access Control 
02.02.2019
On Hold
Improper Access Control 
02.02.2019
On Hold
Improper Access Control 
02.02.2019
On Hold
Improper Access Control 
02.02.2019
On Hold
Improper Access Control 
02.02.2019
On Hold
Improper Access Control 
30.01.2019
On Hold
Improper Access Control 
30.01.2019
On Hold
Improper Access Control 
28.01.2019
On Hold
Improper Access Control 
28.01.2019
On Hold
Improper Access Control 
28.01.2019
On Hold
Improper Access Control 
28.01.2019
On Hold
Improper Access Control 
28.01.2019
On Hold
Improper Access Control 
28.01.2019
On Hold
Improper Access Control 
28.01.2019
On Hold
Improper Access Control 
25.01.2019
On Hold
Cross Site Scripting
25.01.2019
On Hold
Cross Site Scripting
25.01.2019
On Hold
Cross Site Scripting
25.01.2019
On Hold
Cross Site Scripting

  Latest Patched

 22.02.2019 fetchtube.com
 20.02.2019 ioffer.com
 20.02.2019 ucanr.edu
 20.02.2019 lbc.co.uk
 20.02.2019 forever21.com
 20.02.2019 twistys.com
 20.02.2019 trackwrestling.com
 20.02.2019 20minutos.es
 19.02.2019 skyeng.ru
 19.02.2019 ubisoft.com

  Latest Blog Posts

20.02.2019 by drok3r
ModSecurity - ByPass XSS
15.02.2019 by ismailtsdln
Adobe Israel Website XSS Vulnerability
07.02.2019 by aye_robot
Reporting CSRF via Openbugbounty
06.02.2019 by Open Bug Bounty
Launching Open Bug Bounty Blog and new platform features

  Recent Recommendations

    20 February, 2019
     JimM97459222:
Thank you for pointing out the XSS vulnerability in our site. We appreciate your assistance. Thank you!
    20 February, 2019
     michael_eckel:
Thank you very much for helping me discover and fix several XSS vulnerabilities.
    20 February, 2019
     JanetInfoSec:
Thank you for helping improve security at Jisc by reporting a vulnerability to us according to our vulnerability disclosure policy.
    20 February, 2019
     PHPDev8:
Quick and accurate communication. Wonderful to work with.
    18 February, 2019
     cyberday_gmbh:
thanks for reporting again