Report Email Alerts Open Bug Bounty: 102382 coordinated disclosures
Full Disclosure: 32224 vulnerabilities
Total Vulnerabilities Fixed: 34592
112063 vulnerable websites, 12400 VIP websites
2629 security researchers, 3729 notification subscribers

TvM | Security Researcher Profile

Security researcher TvM has already helped fix 117 vulnerabilities.

About me:
Security Researcher Tech Enthusiast Foodie

How to contact me:
https:[email protected]
Gmail: [email protected]

Award / Bug Bounty I prefer:
Nothing, Thanks, Recommendation on my profile, Swag (T-Shirt etc),Public Recognition, Bug Bounty Payment, PayPal, Hall of Fame


Statistics and Awards

Approved XSS vulnerabilities:1356
Approved XSS vulnerabilities on VIP websites:409
Patched vulnerabilities:119
Verified vulnerabilities on Hold (Open Bug Bounty):734
Active since:30.09.2016
Top VIP Security Researcher Awards: Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week

Recommendations and Acknowledgements

18 January, 2017
Hyperionics Greg from Hyperionics:

Pedro is an honest and generous person. He brought a security issue on our web site to my attention with enough details for me to fix it quickly. Did not have any up-front requirements. I'm happy to recommend Pedro!

22 November, 2016
mlerley Mike from SMTnet:

Pedro brought an issue to my attention that I was previously unaware of and my site is better for it. He responded quickly and professionally and I thank him!

8 November, 2016
danfry_hh Dan from freenet:

Pedro pointed out an XSS vulnerability in our website to us. He was very quick and professional in informing us and we greatly appreciate his expert help. Thanks!

31 October, 2016
remecz ZsR from Pressflex:

Promptly and responsibly disclosed technical details of XSS vulnerability found on site. Thank you!

30 January, 2017
lxHunter Alexander Jäger from RedTecLab GmbH:

Pedro found an XSS vulnerability on our website. He responded near realtime and was very professional in the way he disclosed the information. Greatly appreciated! Thanks again!

10 January, 2017
danfry_hh Dan Fry from freenet.de:

Pedro pointed out another XSS vulnerability to us. He was very quick and professional in informing us and we greatly appreciate his expert help. Thanks!

7 December, 2016
zazzalicious Steve Lord from RM/DT:

Many thanks for a very professional report and prompt technical disclosure by TvM of an XSS vulnerability on our site.

6 December, 2016
ShadowsFalling Chris Pratt from Game Debate:

The information we received about our XSS vulnerability even though not a huge vulnerability was still a vulnerability and we would like to thank Pedro for his timely and professional discloure of this information

1 December, 2016
jonny_caos Jonathan from Wine-Searcher:

Pedro, thanks for notifying OpenBugBounty of the XSS vulnerability on our website. The information you provided enabled us to quickly patch the issue. Thanks again and keep up the good work!

30 November, 2016
jonny_caos Jonathan from Wine-Searcher:

Thanks Pedro. You were very quick to respond to my request and provided ample information for us to reproduce and quickly fix the XSS vulnerability. Thanks again!

Shows the first 10 recommendations. See all.

Please login via Twitter to add a recommendation


Reported Vulnerabilities

All Submissions VIP SubmissionsFeatured Submissions

Domain Reported Status Type
21.02.2017
On Hold
XSS  (Open Bug Bounty)
21.02.2017
On Hold
XSS  (Open Bug Bounty)
20.02.2017
On Hold
XSS  (Open Bug Bounty)
20.02.2017
On Hold
XSS  (Open Bug Bounty)
17.02.2017
On Hold
XSS  (Open Bug Bounty)
17.02.2017
On Hold
XSS  (Open Bug Bounty)
17.02.2017
On Hold
XSS  (Open Bug Bounty)
17.02.2017
On Hold
XSS  (Open Bug Bounty)
17.02.2017
On Hold
XSS  (Open Bug Bounty)
17.02.2017
On Hold
XSS  (Open Bug Bounty)
17.02.2017
On Hold
XSS  (Open Bug Bounty)
17.02.2017
On Hold
XSS  (Open Bug Bounty)
17.02.2017
On Hold
XSS  (Open Bug Bounty)
17.02.2017
On Hold
XSS  (Open Bug Bounty)
17.02.2017
On Hold
XSS  (Open Bug Bounty)
17.02.2017
On Hold
XSS  (Open Bug Bounty)
17.02.2017
On Hold
XSS  (Open Bug Bounty)
17.02.2017
On Hold
XSS  (Open Bug Bounty)
16.02.2017
On Hold
XSS  (Open Bug Bounty)
16.02.2017
On Hold
XSS  (Open Bug Bounty)

Latest VIP Submissions

asrock.com
Reported by DrStache Twitter: @DrStache_
Recommendations received: 24
Approved XSS vulnerabilities: 3870
Approved XSS vulnerabilities on VIP websites: 142
on 24.02.2017
stayfriends.de
Reported by k0t Recommendations received: 4
Approved XSS vulnerabilities: 520
Approved XSS vulnerabilities on VIP websites: 234
on 24.02.2017
mp-success.com
Reported by k0t Recommendations received: 4
Approved XSS vulnerabilities: 520
Approved XSS vulnerabilities on VIP websites: 234
on 24.02.2017
commandesparcs-parksorders.ca
Reported by Spam404 Twitter: @Spam404Online
Recommendations received: 61
Approved XSS vulnerabilities: 21972
Approved XSS vulnerabilities on VIP websites: 1555
on 24.02.2017
josbank.com
Reported by Spam404 Twitter: @Spam404Online
Recommendations received: 61
Approved XSS vulnerabilities: 21972
Approved XSS vulnerabilities on VIP websites: 1555
on 24.02.2017
debenhams.com
Reported by Spam404 Twitter: @Spam404Online
Recommendations received: 61
Approved XSS vulnerabilities: 21972
Approved XSS vulnerabilities on VIP websites: 1555
on 24.02.2017
worldofwatches.com
Reported by Spam404 Twitter: @Spam404Online
Recommendations received: 61
Approved XSS vulnerabilities: 21972
Approved XSS vulnerabilities on VIP websites: 1555
on 24.02.2017
childrensplace.com
Reported by Spam404 Twitter: @Spam404Online
Recommendations received: 61
Approved XSS vulnerabilities: 21972
Approved XSS vulnerabilities on VIP websites: 1555
on 24.02.2017
menswearhouse.com
Reported by Spam404 Twitter: @Spam404Online
Recommendations received: 61
Approved XSS vulnerabilities: 21972
Approved XSS vulnerabilities on VIP websites: 1555
on 24.02.2017
sunglasshut.com
Reported by Spam404 Twitter: @Spam404Online
Recommendations received: 61
Approved XSS vulnerabilities: 21972
Approved XSS vulnerabilities on VIP websites: 1555
on 24.02.2017

Latest Submissions

divmebel.ru
Reported by Disst Recommendations received: 2
Approved XSS vulnerabilities: 489
Approved XSS vulnerabilities on VIP websites: 53
on 24.02.2017
zapekankin.ru
Reported by Disst Recommendations received: 2
Approved XSS vulnerabilities: 489
Approved XSS vulnerabilities on VIP websites: 53
on 24.02.2017
yapl.ru
Reported by Disst Recommendations received: 2
Approved XSS vulnerabilities: 489
Approved XSS vulnerabilities on VIP websites: 53
on 24.02.2017
tw.asrock.com
Reported by DrStache Twitter: @DrStache_
Recommendations received: 24
Approved XSS vulnerabilities: 3870
Approved XSS vulnerabilities on VIP websites: 142
on 24.02.2017
icade.fr
Reported by DrStache Twitter: @DrStache_
Recommendations received: 24
Approved XSS vulnerabilities: 3870
Approved XSS vulnerabilities on VIP websites: 142
on 24.02.2017
toutatice.fr
Reported by DrStache Twitter: @DrStache_
Recommendations received: 24
Approved XSS vulnerabilities: 3870
Approved XSS vulnerabilities on VIP websites: 142
on 24.02.2017
moderation.ados.fr
Reported by DrStache Twitter: @DrStache_
Recommendations received: 24
Approved XSS vulnerabilities: 3870
Approved XSS vulnerabilities on VIP websites: 142
on 24.02.2017
gba.cnam.fr
Reported by DrStache Twitter: @DrStache_
Recommendations received: 24
Approved XSS vulnerabilities: 3870
Approved XSS vulnerabilities on VIP websites: 142
on 24.02.2017
wajbety.com
Reported by hussain_0x3c Guest Researcher Profile on 24.02.2017
support.kodak.com
Reported by hussain_0x3c Guest Researcher Profile on 24.02.2017