Report Email Alerts Open Bug Bounty: 102541 coordinated disclosures
Full Disclosure: 32227 vulnerabilities
Total Vulnerabilities Fixed: 34664
112189 vulnerable websites, 12405 VIP websites
2641 security researchers, 3734 notification subscribers

TvM | Security Researcher Profile

Security researcher TvM has already helped fix 125 vulnerabilities.

About me:
Security Researcher Tech Enthusiast Foodie

How to contact me:
https://twitter.com/@tvmpt
Gmail: tvmpt.info@gmail.com

Award / Bug Bounty I prefer:
Nothing, Thanks, Recommendation on my profile, Swag (T-Shirt etc),Public Recognition, Bug Bounty Payment, PayPal, Hall of Fame


Statistics and Awards

Approved XSS vulnerabilities:1357
Approved XSS vulnerabilities on VIP websites:409
Patched vulnerabilities:127
Verified vulnerabilities on Hold (Open Bug Bounty):717
Active since:30.09.2016
Top VIP Security Researcher Awards: Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week

Recommendations and Acknowledgements | Full List:

18 January, 2017
Hyperionics Greg from Hyperionics:

Pedro is an honest and generous person. He brought a security issue on our web site to my attention with enough details for me to fix it quickly. Did not have any up-front requirements. I'm happy to recommend Pedro!

22 November, 2016
mlerley Mike from SMTnet:

Pedro brought an issue to my attention that I was previously unaware of and my site is better for it. He responded quickly and professionally and I thank him!

8 November, 2016
danfry_hh Dan from freenet:

Pedro pointed out an XSS vulnerability in our website to us. He was very quick and professional in informing us and we greatly appreciate his expert help. Thanks!

31 October, 2016
remecz ZsR from Pressflex:

Promptly and responsibly disclosed technical details of XSS vulnerability found on site. Thank you!

30 January, 2017
lxHunter Alexander Jäger from RedTecLab GmbH:

Pedro found an XSS vulnerability on our website. He responded near realtime and was very professional in the way he disclosed the information. Greatly appreciated! Thanks again!

10 January, 2017
danfry_hh Dan Fry from freenet.de:

Pedro pointed out another XSS vulnerability to us. He was very quick and professional in informing us and we greatly appreciate his expert help. Thanks!

7 December, 2016
zazzalicious Steve Lord from RM/DT:

Many thanks for a very professional report and prompt technical disclosure by TvM of an XSS vulnerability on our site.

6 December, 2016
ShadowsFalling Chris Pratt from Game Debate:

The information we received about our XSS vulnerability even though not a huge vulnerability was still a vulnerability and we would like to thank Pedro for his timely and professional discloure of this information

1 December, 2016
jonny_caos Jonathan from Wine-Searcher:

Pedro, thanks for notifying OpenBugBounty of the XSS vulnerability on our website. The information you provided enabled us to quickly patch the issue. Thanks again and keep up the good work!

30 November, 2016
jonny_caos Jonathan from Wine-Searcher:

Thanks Pedro. You were very quick to respond to my request and provided ample information for us to reproduce and quickly fix the XSS vulnerability. Thanks again!

24 November, 2016
PeterQsm94934 Peter from Philips:

Pedro did a swift job in disclosing the vulnerability he found. Thanks!

23 November, 2016
shamrayonok Alexandr from CSO:

Information that Pedro provided was useful for our website and his response was quick and extensive. Thanks for the help!

22 November, 2016
xcritic Chris Thorne from XCritic:

Very helpful finding a long standing XSS bug and then was helpful to point out resources to fix. Can't say how much I appreciate folks looking out for the little guy!

20 November, 2016
showmypc VnY from ShowMyPC:

Thanks for professionally and responsibly reporting a bug on our site and we were able to fix it promptly. Thanks for your help.

12 November, 2016
selectanescort elrond from SelectanEscort:

Thanks for providing information on an XSS vulnerability on my website. The lesson was very useful.

7 November, 2016
luboskrnac Lubos Krnac from Dotsub:

+1. Professional, safe and prompt disclosure. Thanks!

3 November, 2016
yarivaAtEasyHi Yariv Azatchi from Slidely:

Pedro did an excellent and professional work, helping us detect an XSS bug on our service. He replied quickly to our emails and provided all information to reproduce the issue.

2 November, 2016
seancolombo Sean from BlueLine Games:

Pedro responded very quickly with the relevant information & we were able to release a fix within a matter of hours. It was very helpful to have him report this to us through OBB instead of us having a vulnerability on our site waiting to be exploited.

Thanks for the help, Pedro!

1 November, 2016
pvdbroek Pim from SS:

Pedro helped us locate a XSS bug on our site. He responded quickly to emails and was very helpful.

Please login via Twitter to add a recommendation


Reported Vulnerabilities

All Submissions VIP SubmissionsFeatured Submissions

Domain Reported Status Type
24.02.2017
On Hold
XSS  (Open Bug Bounty)
23.02.2017
On Hold
XSS  (Open Bug Bounty)
23.02.2017
On Hold
XSS  (Open Bug Bounty)
22.02.2017
On Hold
XSS  (Open Bug Bounty)
22.02.2017
On Hold
XSS  (Open Bug Bounty)
22.02.2017
On Hold
XSS  (Open Bug Bounty)
22.02.2017
On Hold
XSS  (Open Bug Bounty)
22.02.2017
On Hold
XSS  (Open Bug Bounty)
22.02.2017
On Hold
XSS  (Open Bug Bounty)
22.02.2017
On Hold
XSS  (Open Bug Bounty)
22.02.2017
On Hold
XSS  (Open Bug Bounty)
22.02.2017
On Hold
XSS  (Open Bug Bounty)
22.02.2017
On Hold
XSS  (Open Bug Bounty)
22.02.2017
On Hold
XSS  (Open Bug Bounty)
22.02.2017
On Hold
XSS  (Open Bug Bounty)
22.02.2017
On Hold
XSS  (Open Bug Bounty)
21.02.2017
On Hold
XSS  (Open Bug Bounty)
21.02.2017
On Hold
XSS  (Open Bug Bounty)
21.02.2017
On Hold
XSS  (Open Bug Bounty)
21.02.2017
On Hold
XSS  (Open Bug Bounty)

Latest VIP Submissions

sexlew.net
Reported by rj01 Twitter: @RoyJansen_01
Recommendations received: 3
Approved XSS vulnerabilities: 844
Approved XSS vulnerabilities on VIP websites: 133
on 26.02.2017
charkhan.com
Reported by OmniGooch Recommendations received: 2
Approved XSS vulnerabilities: 2340
Approved XSS vulnerabilities on VIP websites: 128
on 26.02.2017
videosz.com
Reported by rj01 Twitter: @RoyJansen_01
Recommendations received: 3
Approved XSS vulnerabilities: 844
Approved XSS vulnerabilities on VIP websites: 133
on 25.02.2017
digitalplayground.com
Reported by rj01 Twitter: @RoyJansen_01
Recommendations received: 3
Approved XSS vulnerabilities: 844
Approved XSS vulnerabilities on VIP websites: 133
on 25.02.2017
e-lyco.fr
Reported by DrStache Twitter: @DrStache_
Recommendations received: 24
Approved XSS vulnerabilities: 3881
Approved XSS vulnerabilities on VIP websites: 147
on 25.02.2017
newsweek.pl
Reported by DonkeyJJLove Twitter: @DonkeyJJLove
Recommendations received: 9
Approved XSS vulnerabilities: 896
Approved XSS vulnerabilities on VIP websites: 265
on 25.02.2017
suara.com
Reported by Rungga Twitter: @rungga_reksya
Approved XSS vulnerabilities: 383
Approved XSS vulnerabilities on VIP websites: 23
on 24.02.2017
aqua.hu
Reported by RickChase Approved XSS vulnerabilities: 214
Approved XSS vulnerabilities on VIP websites: 9
on 24.02.2017
telestar.fr
Reported by DrStache Twitter: @DrStache_
Recommendations received: 24
Approved XSS vulnerabilities: 3881
Approved XSS vulnerabilities on VIP websites: 147
on 24.02.2017
football365.fr
Reported by DrStache Twitter: @DrStache_
Recommendations received: 24
Approved XSS vulnerabilities: 3881
Approved XSS vulnerabilities on VIP websites: 147
on 24.02.2017

Latest Submissions

asianamericantgirls.com
Reported by rj01 Twitter: @RoyJansen_01
Recommendations received: 3
Approved XSS vulnerabilities: 844
Approved XSS vulnerabilities on VIP websites: 133
on 26.02.2017
arabianchicks.com
Reported by rj01 Twitter: @RoyJansen_01
Recommendations received: 3
Approved XSS vulnerabilities: 844
Approved XSS vulnerabilities on VIP websites: 133
on 26.02.2017
blackgfsex.com
Reported by rj01 Twitter: @RoyJansen_01
Recommendations received: 3
Approved XSS vulnerabilities: 844
Approved XSS vulnerabilities on VIP websites: 133
on 26.02.2017
roundandbrown.com
Reported by rj01 Twitter: @RoyJansen_01
Recommendations received: 3
Approved XSS vulnerabilities: 844
Approved XSS vulnerabilities on VIP websites: 133
on 26.02.2017
badtowtruck.com
Reported by rj01 Twitter: @RoyJansen_01
Recommendations received: 3
Approved XSS vulnerabilities: 844
Approved XSS vulnerabilities on VIP websites: 133
on 26.02.2017
primecups.com
Reported by rj01 Twitter: @RoyJansen_01
Recommendations received: 3
Approved XSS vulnerabilities: 844
Approved XSS vulnerabilities on VIP websites: 133
on 26.02.2017
spizoo.com
Reported by rj01 Twitter: @RoyJansen_01
Recommendations received: 3
Approved XSS vulnerabilities: 844
Approved XSS vulnerabilities on VIP websites: 133
on 26.02.2017
es.wowcardmarket.eu
Reported by pabloskimaster Guest Researcher Profile on 26.02.2017
phalogenics.com
Reported by rj01 Twitter: @RoyJansen_01
Recommendations received: 3
Approved XSS vulnerabilities: 844
Approved XSS vulnerabilities on VIP websites: 133
on 26.02.2017
m.porn555.com
Reported by rj01 Twitter: @RoyJansen_01
Recommendations received: 3
Approved XSS vulnerabilities: 844
Approved XSS vulnerabilities on VIP websites: 133
on 26.02.2017