Report Email Alerts Open Bug Bounty: 107377 coordinated disclosures
Full Disclosure: 32317 vulnerabilities
Total Vulnerabilities Fixed: 36356
116319 vulnerable websites, 12676 VIP websites
2791 security researchers, 3873 notification subscribers

Spam404 Top Security Researcher Top Security Researcher of the Month Top VIP Security Researcher of the Month | Security Researcher Profile

Security researcher Spam404 has already helped fix 6231 vulnerabilities.

Follow me on:
Twitter
LinkedIn

Real name:
Cameron

How to contact me:
You can contact me via email - [email protected]

I encourage you to contact me ASAP so we can work together to quickly protect your users! All communication will be kept private.

Alternative Contacts:
Should I not respond via email (never happened!) please reach out via Twitter - @Spam404Online

Experience in Application Security:
1-3 years

Award / Bug Bounty I prefer:
An acknowledgment on my profile is enough but if you feel like treating me to something extra for my time I appreciate the following -

Bug Bounty (PayPal)
Swag (T-Shirt etc)
Public Recognition

Halls of Fame:
http://www.spam404.com/security-research.html
https://hackerone.com/spam404


Statistics and Awards

Approved XSS vulnerabilities:21980
Approved XSS vulnerabilities on VIP websites:1556
Patched vulnerabilities:6522
Verified vulnerabilities on Hold (Open Bug Bounty):417
Active since:03.11.2015
Top Security Researcher Awards: The Top Security Researcher The Top Security Researcher Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month
Top VIP Security Researcher Awards: Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week

Recommendations and Acknowledgements

27 January, 2017
1und1 Andreas Maurer from 1&1 Internet:

Cameron reported severals bugs on our website. He was fast, polite and professional. A great help and much appreciated.

21 December, 2016
TeamViewer Axel Schmidt from TeamViewer:

Cameron helped us significantly improve our services, and certainly proved to be extremely knowledgeable. We are extremely grateful to him and very much appreciate his research.

2 November, 2016
myvidster Marques from MyVidster:

Cameron found serval XSS exploits and was quick to respond to emails. Big thanks and keep up the wonderful work.

18 September, 2016
Japigiacom Franco from japigia.com:

Cameron was great! He helped me to identify and definitively fix an XSS problem on an old script. Very skilled researcher! Thanks a lot!

8 September, 2016
ISOatUO Jim @ISOatUO from University of Otago:

Cameron found an XSS in our site, and provided fast and accurate information to allow us to reproduce and fix. Thanks :-)

2 September, 2016
christopherbolt Chris from BoltMail:

Cameron reported and helped us to resolve an XSS bug with our site, he was fast, polite and professional. A great help and much appreciated.

22 August, 2016
traperto Thorsten Rintelen from traperto GmbH:

Cameron helped us to identify some XSS vulnerabilities on the website of some of our customers. Thank you very much!

17 August, 2016
mherrma50656928 Marcel Herrmann from APTIS GmbH:

Cameron helped us to identify some XSS vulnerabilities on the website of one of our customers. Thank you!

29 June, 2016
goathunter Hunter Goatley from Process Software:

Thanks for reporting the vulnerability. I was able to produce a fix for it easily, but it's not something I'd have ever thought to try.

28 June, 2016
bryandowen Bryan Owen from Medallia:

Cameron identified two issues with our web site, and shared details with us right away. He's doing this for the right reasons - and really doing a public service. Thank you, Cameron!

Shows the first 10 recommendations. See all.

Please login via Twitter to add a recommendation


Reported Vulnerabilities

All Submissions VIP SubmissionsFeatured Submissions

Domain Reported Status Type
27.03.2017
On Hold
OR   (Open Bug Bounty)
25.03.2017
On Hold
XSS  (Open Bug Bounty)
22.03.2017
On Hold
XSS  (Open Bug Bounty)
20.03.2017
On Hold
XSS  (Open Bug Bounty)
20.03.2017
On Hold
XSS  (Open Bug Bounty)
19.03.2017
On Hold
XSS  (Open Bug Bounty)
18.03.2017
On Hold
XSS  (Open Bug Bounty)
10.03.2017
On Hold
XSS  (Open Bug Bounty)
07.03.2017
patched
XSS  (Open Bug Bounty)
24.02.2017
On Hold
XSS  (Open Bug Bounty)
24.02.2017
On Hold
XSS  (Open Bug Bounty)
24.02.2017
On Hold
XSS  (Open Bug Bounty)
24.02.2017
On Hold
XSS  (Open Bug Bounty)
24.02.2017
On Hold
XSS  (Open Bug Bounty)
24.02.2017
On Hold
XSS  (Open Bug Bounty)
24.02.2017
On Hold
XSS  (Open Bug Bounty)
24.02.2017
On Hold
XSS  (Open Bug Bounty)
24.02.2017
On Hold
XSS  (Open Bug Bounty)
24.02.2017
On Hold
XSS  (Open Bug Bounty)
24.02.2017
On Hold
XSS  (Open Bug Bounty)

Latest VIP Submissions

wine-searcher.com
Reported by TvM Recommendations received: 20
Approved XSS vulnerabilities: 1410
Approved XSS vulnerabilities on VIP websites: 422
on 28.03.2017
pesni-tut.com
Reported by porthunter Twitter: @porthunter
Recommendations received: 1
Approved XSS vulnerabilities: 311
Approved XSS vulnerabilities on VIP websites: 132
on 27.03.2017
bpjsketenagakerjaan.go.id
Reported by porthunter Twitter: @porthunter
Recommendations received: 1
Approved XSS vulnerabilities: 311
Approved XSS vulnerabilities on VIP websites: 132
on 27.03.2017
deepdyve.com
Reported by porthunter Twitter: @porthunter
Recommendations received: 1
Approved XSS vulnerabilities: 311
Approved XSS vulnerabilities on VIP websites: 132
on 27.03.2017
tvzvezda.ru
Reported by porthunter Twitter: @porthunter
Recommendations received: 1
Approved XSS vulnerabilities: 311
Approved XSS vulnerabilities on VIP websites: 132
on 27.03.2017
firmenwissen.de
Reported by badmaxx Twitter: @_badmaxx_
Approved XSS vulnerabilities: 144
Approved XSS vulnerabilities on VIP websites: 1
on 27.03.2017
vto.pe
Reported by qiece Twitter: @qiecew9w
Recommendations received: 3
Approved XSS vulnerabilities: 176
Approved XSS vulnerabilities on VIP websites: 10
on 27.03.2017
antyradio.pl
Reported by DonkeyJJLove Twitter: @DonkeyJJLove
Recommendations received: 9
Approved XSS vulnerabilities: 904
Approved XSS vulnerabilities on VIP websites: 272
on 27.03.2017
porsche.com
Reported by Random_Robbie Twitter: @Random_Robbie
Recommendations received: 9
Approved XSS vulnerabilities: 1981
Approved XSS vulnerabilities on VIP websites: 110
on 27.03.2017
ancestry.co.uk
Reported by Random_Robbie Twitter: @Random_Robbie
Recommendations received: 9
Approved XSS vulnerabilities: 1981
Approved XSS vulnerabilities on VIP websites: 110
on 27.03.2017

Latest Submissions

awm.wien
Reported by badmaxx Twitter: @_badmaxx_
Approved XSS vulnerabilities: 144
Approved XSS vulnerabilities on VIP websites: 1
on 28.03.2017
sport.oe24.at
Reported by badmaxx Twitter: @_badmaxx_
Approved XSS vulnerabilities: 144
Approved XSS vulnerabilities on VIP websites: 1
on 28.03.2017
ulmer.de
Reported by badmaxx Twitter: @_badmaxx_
Approved XSS vulnerabilities: 144
Approved XSS vulnerabilities on VIP websites: 1
on 28.03.2017
shop.lederjacken24.de
Reported by badmaxx Twitter: @_badmaxx_
Approved XSS vulnerabilities: 144
Approved XSS vulnerabilities on VIP websites: 1
on 28.03.2017
asmc.de
Reported by badmaxx Twitter: @_badmaxx_
Approved XSS vulnerabilities: 144
Approved XSS vulnerabilities on VIP websites: 1
on 28.03.2017
sauer.de
Reported by badmaxx Twitter: @_badmaxx_
Approved XSS vulnerabilities: 144
Approved XSS vulnerabilities on VIP websites: 1
on 28.03.2017
knobloch-jagd.de
Reported by badmaxx Twitter: @_badmaxx_
Approved XSS vulnerabilities: 144
Approved XSS vulnerabilities on VIP websites: 1
on 28.03.2017
jaegershop24.de
Reported by badmaxx Twitter: @_badmaxx_
Approved XSS vulnerabilities: 144
Approved XSS vulnerabilities on VIP websites: 1
on 28.03.2017
bachehayeaseman.org
Reported by OmniGooch Recommendations received: 2
Approved XSS vulnerabilities: 2577
Approved XSS vulnerabilities on VIP websites: 149
on 28.03.2017
rivistaaic.it
Reported by OmniGooch Recommendations received: 2
Approved XSS vulnerabilities: 2577
Approved XSS vulnerabilities on VIP websites: 149
on 28.03.2017