Coordinated and Responsible Vulnerability Disclosure Free Bug Bounty Program 317,195 coordinated disclosures
186,328 fixed vulnerabilities
372 bug bounties with 810 websites
8,796 researchers, 315 honor badges

alicanact60 | Security Researcher Profile


Security researcher alicanact60 has already helped fix 65 vulnerabilities.



Researcher reputation:  30

Real name:
Ali Tutuncu

About me:
Bug Researcher

How to contact me:
Twitter: @alicanact60
Mail: [email protected]

Experience in Application Security
1-3 years

Award / Bug Bounty I prefer:
If you\'d like:
# Payment
# Hall Of Fame
# Bug Bounty ($$$)
# T-shirts, Sweats, Caps, Stickers, Keychains, etc..

Halls of Fame:
sec.xiaomi.com/fame

Recommendations and Acknowledgements

    2 July, 2018
     pejadesign Gabriele Peja from Peja Design:
Thank you very mutch, Ali for your help to fix a issue on my site.
    12 June, 2018
     ColinSchloth Colin Schloth from NBA:
Thank you Ali for the awesome job in pinpointing the weaknesses on one of our websites!

Please login via Twitter to add a recommendation

Awards and Achievements


Number of Secured Websites

10+ Websites
50+ Websites
500+ Websites
WEB SECURITY VETERAN
1000+ Websites

Advanced Security Research

WAF Bypasser
CSRF Master
30+ Reports
AppSec Logic Master
30+ Reports
Fastest Fix
Fix in 24 hours

Outstanding Achievements

Secured OBB
OBB Advocate
Improved OBB

Commitment to Remediate and Patch

Patch Master
55% Patched
Patch Guru
65% Patched
Patch Lord
75% Patched

Recommendations and Recognition

REPUTABLE
10+ Recommends
FAMOUS
25+ Recommends
GLOBALLY TRUSTED
50+ Recommends

Research Statistics



Total reports:243
Total reports on VIP sites:9
Total patched vulnerabilities:65
Total vulnerabilities on Hold (Open Bug Bounty):11
Recommendations received:2
Active since:13.01.2018

Open Bug Bounty Certificate





No posts in blog yet


Reported Vulnerabilities

All Submissions VIP Submissions

Domain Reported Status Type
09.05.2018
unpatched
Cross Site Scripting
09.05.2018
unpatched
Cross Site Scripting
09.05.2018
unpatched
Cross Site Scripting
09.05.2018
patched
Cross Site Scripting
09.05.2018
unpatched
Cross Site Scripting
09.05.2018
unpatched
Cross Site Scripting
09.05.2018
unpatched
Cross Site Scripting
09.05.2018
unpatched
Cross Site Scripting
09.05.2018
unpatched
Cross Site Scripting
09.05.2018
unpatched
Cross Site Scripting
09.05.2018
unpatched
Cross Site Scripting
09.05.2018
unpatched
Cross Site Scripting
09.05.2018
unpatched
Cross Site Scripting
09.05.2018
unpatched
Cross Site Scripting
09.05.2018
unpatched
Cross Site Scripting
09.05.2018
patched
Cross Site Scripting
09.05.2018
unpatched
Cross Site Scripting
09.05.2018
unpatched
Cross Site Scripting
09.05.2018
unpatched
Cross Site Scripting
06.05.2018
patched
Cross Site Scripting

  Latest Patched

 19.02.2019 viewbug.com
 19.02.2019 voirfilms.one
 18.02.2019 casio.com
 18.02.2019 challenges.fr
 18.02.2019 miur.gov.it
 18.02.2019 20minutos.es
 18.02.2019 canadacomputers.com
 17.02.2019 peliculastoday.com
 17.02.2019 ebi.ac.uk
 17.02.2019 canadapost.ca

  Latest Blog Posts

15.02.2019 by ismailtsdln
Adobe Israel Website XSS Vulnerability
07.02.2019 by aye_robot
Reporting CSRF via Openbugbounty
06.02.2019 by Open Bug Bounty
Launching Open Bug Bounty Blog and new platform features

  Recent Recommendations

    18 February, 2019
     cyberday_gmbh:
thanks for reporting again
    17 February, 2019
     JimM97459222:
Thank you for pointing out the XSS vulnerability in our site. We appreciate your work and quick response. Thank you!!
    17 February, 2019
     JimM97459222:
Thanks Dipu1A... I had no idea how easy it was to have a XSS vulnerability. Much thanks for pointing it out.
    14 February, 2019
     DomainMOD:
Thanks a lot for the report! We completely missed this vulnerability ourselves and are happy that you caught it!
    14 February, 2019
     fisher_of_men11:
Thank you for helping me find and fix the XSS vulnerability on mudconnect!