Coordinated and Responsible Vulnerability Disclosure Free Bug Bounty Program 297,295 coordinated disclosures
175,750 fixed vulnerabilities
237,715 websites, 17,852 VIP websites
8,027 researchers, 6,915 subscribers

deb_security Top Security Researcher of the Month Top VIP Security Researcher of the Month | Security Researcher Profile


Security researcher deb_security has already helped fix 3923 vulnerabilities.



Researcher reputation:  1140

Real name:
Eduardo (deb_security)

How to contact me:
mail: [email protected]
twitter: https://twitter.com/deb_security

Certifications & Diplomas:
PPT, Offensive Security

Experience in Application Security
1-3 years

Award / Bug Bounty I prefer:
Paypal, Amazon gift card, BTC, Swag, Gifs.. or thanks :)

paypal mail: [email protected]

Follow me on:
Twitter

Recommendations and Acknowledgements | Full List:

    27 November, 2018
     scubapics_de Rainer from Omneia:
Thanks Eduardo, most helpful and great work, really appreciated! Impressed of the quick help how to fix. Good man!
    26 November, 2018
     modulargridNET Knut Schade from ModularGrid:
Thanks Eduardo, very friendly and helpful!
    21 November, 2018
     dJoceNet Jocelyn from eiffel.org:
Thank you for notifying us of the issue and check it was fixed!
    19 November, 2018
     jcolls Jonathan Colls from ABC:
Many thanks to Eduardo for letting us know of a vulnerability and some suggested solutions.
    16 November, 2018
     Honscha_Muenzen Tobias from THCoin:
Thank you very much for your help!
    31 October, 2018
     davidbehler David from PrepLounge:
Thank you for helping us identify and fix multiple XSS vulnerabilities
    11 October, 2018
     wiesenbacher Wiesenbacher from multiNETT:
Thank You Eduardo! I fixed the Problem on 2018/10/08. But unfortunately you forgot to switch my Status to "patched". You wrote me, you have done this. Did you found later an other security Risk?
    10 October, 2018
     whitedataDE Dominik from whitedata Holding GmbH:
Thank you very much for your friendly help.
    8 October, 2018
     wiesenbacher Michael from multinett:
thank you for your hint!
    26 September, 2018
     inoventu Alex from Inoventu:
Eduardo send a quick and detailed report. Thank you for your help!
    13 September, 2018
     SocialbakersSec Socialbakers Security from Socialbakers:
Thanks to Eduardo for reporting vulnerability and details!
    3 September, 2018
     0d92c596 Security Officer from INSMI/CNRS:
A great thanks to Eduardo for his help fixing an XSS vulnerability.
Clear explanation. Quick fix!
    14 August, 2018
     frecl Frank from Reclam:
Eduardo helped us in a very quick and fair way so that we could implement a bugfix. Thanks very much!
    24 July, 2018
     netz_meister marko from netz-meister:
Eduardo acted fair and quick by sending information on a xss vulnerability and how to fix it. Well done.
    9 July, 2018
     jcid Cliff from JCID:
Eduardo found a XSS vulnerability on one of our sites and we were able to find it and fix it. Thanks for the report!
    5 July, 2018
     joerghambuch Jörg Hambuch from ADWM:
Eduardo informed us of an XSS vulnerability. Thanks to him, we could fix it before the bad guys were able to use it. He responded quick and was very helpful.
    3 July, 2018
     bertbalcaen Bert Balcaen from VSPW:
Eduardo was quick and correct in reporting an issue with our website. He was very helpful and to the point when describing the issue and a possible solution.
    1 July, 2018
     nonfiction_fr Nonfiction from Nonfiction.fr:
Many thanks to Eduardo who helped us to identify and fix a XSS vulnerability on our website. His explanations were very clear and provided some tips which were very useful.
    27 June, 2018
     eelcoheuvelmans Eelco Heuvelmans from Blink:
Thanks for the pointer to the vulnerability and explanation.
    15 June, 2018
     Nu_Gratis Alex from NuGratis:
Thanks to Eduardo we have fixed a XSS vulnerability on our website. His help was fast and he gave simple instructions on how to fix the problem. Many thanks!
    7 June, 2018
     avanthof Arjan from Medem:
Thanks to Eduardo to help us out with a XSS vulnerability. Problem solved!
    7 June, 2018
     MediaVgn Toni Liebscher from VGN Digital:
deb_security communicated very fast and in a constructive manner. Thanks to his examples and detailed description we were able to find and fix the vulnerability very quickly. Thank you!
    4 June, 2018
     digisolid Martin Otte from Klik-info.nl:
Eduardo helped us to found a XSS vulnerability. Thanks!
    1 June, 2018
     activeinbox Andy Mitchell from ActiveInbox:
Truly appreciated Eduardo not only finding the issue in the first place, but giving a really clean and simple instruction on how to resolve it. I didn't think twice about giving him an award, as a little cost up front is so much more valuable than fixing an attack later.
    31 May, 2018
     RSwartzer Ron Swartzendruber from Western Oregon University:
Eduardo has been very helpful, not only explaining the problem but suggesting a solution that worked.
    31 May, 2018
     SandiSchleicher SSchleicher from iGive:
Thank you for letting us know about this issue. It has been corrected. We always appreciate help improving our site.
    31 May, 2018
     rat_info24 F.K. from F/X W. C.:
Eduardo was reacting in lightning speed once I contacted him. He explained the issue to me very clear and provided a comprehensive amount of possible solutions. This was really great service, thanks so much!
    28 May, 2018
     Lecture2Go Lecture2Go from UHH:
Thank you for helping us to find XSS vulnerability!
    25 May, 2018
     ArtisUpenieks Artis from kurpirkt:
Thank you Eduardo for helping us to find and to fix the vulnerability!
    22 May, 2018
     hikingsite Raymond from Hiking-site.nl:
Eduardo was very clear in showing where I had missed some security settings and was friendly enough to check my changes afterwards to make sure things were solved. Fast in his response. Great service!
    22 May, 2018
     aartvdwerf Aart from OI:
Thanks for helping us fixing two XSS vulnerabilities!
    14 May, 2018
     M_C_E_S_T StefanK from MCES:
Thank you very much for reporting the XSS vulnerability in one of our website forms, and for sharing detailed information. So we were able to close the hole fast.
    10 May, 2018
     nidapo5 Nick Porter from 5th Dunstable Scout Group:
deb_security promptly provided full details and examples, that made it easy to pin down the problem. Many thanks to deb_security for highlighting this issue, so that I could fix it.
    9 May, 2018
     nidapo5 Nick Porter from 5th Dunstable Scout Group:
Thanks for highlighting my widespread XSS problem, which I think I have now fixed. Very prompt in supplying full details and example URLs, which helped a lot.
    8 May, 2018
     bobthenob Bob Kolk from Tumbl Trak:
Thank you for letting me know about our XSS issue, Eduardo. Swag is on the way!
    26 April, 2018
     m_karg m_karg from IMSoft:
Thanks for helping fixing a XSS vulnerability
    20 April, 2018
     reichardtalex Alex from Overnightprints:
Thanks for your help to make our site more secure!
    18 April, 2018
     korinly Korin Lykam from Bitch Media:
Thank you for supplying the information about a vulnerability so quickly. We were able to fix it immediately!
    18 April, 2018
     RealMarcelHauer Marcel from CSS:
Thank you Eduardo for highlighting the XSS vulnerability on our customers website and helping us with suggestions. :-)
    12 April, 2018
     FerienNetzwerk Ingo from FerienNetzwerk:
Thanks for the message and the very fast support.
    4 April, 2018
     xTazOsailling GirardO from University of Angers, FR:
Thank you for reporting a vulnerability on our website so we could fix it quickly.
    3 April, 2018
     juppwerner Joachim Werner from diggin-data:
Thank you very much for reporting a vulneraibility and suppling detailed information for solution.
    2 April, 2018
     graubuendner Roman from Graubünden Online:
thank you Eduardo, good work! Greetz from Switzerland
    26 March, 2018
     theUniC Christian Soronellas from Enalquiler:
Eduardo kindly and professionally reported us an ugly security issue. The report he sent and all the details he provided were extremely useful to spot the issue. So thanks to his help now our site is a bit more secure.
    21 March, 2018
     TenSoonK Yotoon from Wallhalla.com:
Thank you so much for your help. We need more people like Eduardo!
    19 March, 2018
     rchutter Reinhard Hutter from webtourismus.at:
Thanks for helping us fixing a XSS vulnerability
    16 March, 2018
     farhan6318 Farhan from Islamic Online University:
Thank you Eduardo ,you are extremely helpful and knowledgeable
    16 March, 2018
     aubiplus Thorben from AUBI-plus:
Thank you for pointing us to the XSS vulnerability on our website.
    14 March, 2018
     tmsq Seb from SS7:
Thanks Eduardo for notifying us about a XSS vulnerability on the website and you suggestions!
    13 March, 2018
     WFlieder Winfried Flieder from LILAC media:
Thank you for reporting this vulnerability and your help to patch it. We hihgly recommend you
    12 March, 2018
     bintangZRH Clemens from solidIT AG:
Thank you very much for your help. Greatly appreciated!
    28 February, 2018
     jenskoester Jens from netzlabor:
Thank you for your great support in identifying a XSS vulnerability. You're a great guy!
    28 February, 2018
     dolphin_systems YPG from Dolphin:
Thanks Eduardo for your professional help in solving our security issue. I very much appreciated your Patience! well done, good Job
    15 February, 2018
     BudTerence5 Hendrik from Mahr:
Thanks to Eduardo for his great researching and detailed report. Great Work!
    14 February, 2018
     Ross85042 RRiccio from MIUR:
Thanks to Eduardo for his expertise and readiness: he helped us to solve a problem rapidly
    14 February, 2018
     beratunghelp Benjamin Slezak from netdoktor GmbH:
Thanks to deb_security we just fixed a XSS vulnerability. Great! Very nice of you!
    10 February, 2018
     maticej Matthew from exact media:
Eduardo helped us fix the xss vulnerability. Great guy!
    8 February, 2018
     Andreas33171176 Andreas from ZAMG:
Thank you Eduard, for scanning our site and the detailed report.
    8 February, 2018
     jucarsa21 jucarsa21 from upm.es:
Thank you Eduardo for identifying a XSS-Vulnerability on our website and give a cleary suggestion
    7 February, 2018
     daughterofpoets Doa from Thrive Global:
Thanks for reporting a legitimate vulnerability and providing us extensive info right away so we could patch. Definitely recommend you!
    7 February, 2018
     Lea_Goasguen LoganeLea from LaTélé:
Thanks very much for your help and your reactivity.
    6 February, 2018
     pdreijnders Patrick from Saxion:
Thank you Eduardo for giving us the heads-up on the XSS vulnerability of our site. Very helpful, keep up the good work!
    5 February, 2018
     lloydalvarez Lloyd A from aes:
Thanks Eduardo for your amazing professionality and ethics! There should be more of you out there in the world!
    2 February, 2018
     LaggedSkip Michael from Skiplagged:
Eduardo provided detailed steps and explanation to a vulnerability on our site. Much appreciated.
    31 January, 2018
     __AhmedKamel Ahmed Kamel from ZADGroup:
deb_security has helped us today to mitigate an XSS vulnerability for free, thanks a lot for your efforts.
    25 January, 2018
     truncheonhead Tobias Kästle from Viva con Agua:
deb_security explored a XSS vulnerability on our website and immediately helped us to fix the issue! I'm really thankful for the great work!
    24 January, 2018
     buweb Anton from Boston University:
Eduardo is great. Very helpful and ready for a talk.
    23 January, 2018
     kentreez Kasidiss from Lnw:
Thank you Eduardo for identifying a XSS-Vulnerability on our website and give a cleary suggestion.
    19 January, 2018
     doc__ua doc.ua from doc.ua:
Our first XSS vulnerability was reported by Eduardo. Thanks
    19 January, 2018
     alin alin from avocatnet.ro:
Thank you, Eduardo, for helping us find and fix a vulnerability. I fully recommend you.
Best.
    19 January, 2018
     hugolassiege Hugo Lassiege from Malt:
Thanks to Eduardo who reports an XSS vulnerability on our site.
Thanks !
    17 January, 2018
     AC_Anonymous Ac_Anonymous from AC_Anonymous:
Thanks, Eduardo! :D We are now aware of a XSS vulnerability in our site, so.. Time to fix it!
    17 January, 2018
     JFPlaMed JerryF from PlanetMedia:
deb_security provided prompt and clear assistance to help us replicate and address our issue. Thank you !
    10 January, 2018
     suisho Aki from densuke:
With precise advice, he helped me very much.
I really appreciate it.
    9 January, 2018
     ollmii Oliver from TUHH:
deb_security alerted us about an XSS vulnerability and recommended a working solution to solve that. Thank you!
    9 January, 2018
     dmitrysir Dmitry from Vesti:
Very professional, thanks for help!
    9 January, 2018
     FabianSchorb Fabian :
Thank you very much for identifying a XSS-Vulnerability on our Website!
    8 January, 2018
     lbalves Leandro from Méliuz:
deb_security has helped us to identify a XSS vulnerability on our blog. Thanks!
    19 December, 2017
     keneniah777 Holger Selig from Tradino GbR:
deb_security helped to patch a lot of our installations. Therefore once again many thanks.
    15 December, 2017
     dmg_geom Ronald from TU-Wien:
Dear Eduardo, thank you for your help to find and fix a XSS vulnerability on our site! All the best!
    14 December, 2017
     keneniah777 Holger from Tradino GbR:
Thanks to Eduardo we could fix a severe vulnerability that was undetected for months.
    29 November, 2017
     Eurojobs_com Eurojobs_com from Eurojobs.com Ltd:
Thanks Eduardo for alerting us to this vulnerability!
    29 November, 2017
     Schmierwoschd Wolfgang S. from MMcom:
Dear Eduardo, thank you very much for your professional help and the friendly contact. All the best
    28 November, 2017
     shaunallcock Shaun from Click:
deb_security has helped us to identify a XSS vulnerability on our sites, thanks for the help.
    30 October, 2017
     componavt Andrew Krizhanovsky from Institute of Applied Mathematical Research:
Thank you for your help!
    24 October, 2017
     teddyrised Terry from Aarhus University:
deb_security has helped us to identify a single XSS vulnerability on our site, and responded in a timely and professional manner.

Please login via Twitter to add a recommendation

Awards and Achievements


Number of Secured Websites

10+ Websites
50+ Websites
500+ Websites
WEB SECURITY VETERAN
1000+ Websites

Advanced Security Research

WAF Bypasser
CSRF Master
30+ Reports
AppSec Logic Master
30+ Reports
Fastest Fix
Fix in 24 hours

Outstanding Achievements

Secured OBB
OBB Advocate
Improved OBB

Commitment to Remediate and Patch

Patch Master
55% Patched
Patch Guru
65% Patched
Patch Lord
75% Patched

Recommendations and Recognition

REPUTABLE
10+ Recommends
FAMOUS
25+ Recommends
GLOBALLY TRUSTED
50+ Recommends

Research Statistics



Total reports:12313
Total reports on VIP sites:1121
Total patched vulnerabilities:3923
Total vulnerabilities on Hold (Open Bug Bounty):1731
Recommendations received:86
Active since:04.10.2017
Top Security Researcher Awards: Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month
Top VIP Security Researcher Awards: Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Month Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week

Open Bug Bounty Certificate



Reported Vulnerabilities

All Submissions VIP Submissions

Domain Reported Status Type
12.12.2018
On Hold
Cross Site Scripting
12.12.2018
On Hold
Cross Site Scripting
12.12.2018
On Hold
Cross Site Scripting
12.12.2018
On Hold
Cross Site Scripting
12.12.2018
On Hold
Cross Site Scripting
12.12.2018
On Hold
Cross Site Scripting
12.12.2018
On Hold
Cross Site Scripting
12.12.2018
On Hold
Cross Site Scripting
12.12.2018
On Hold
Cross Site Scripting
12.12.2018
On Hold
Cross Site Scripting
12.12.2018
On Hold
Cross Site Scripting
12.12.2018
On Hold
Cross Site Scripting
12.12.2018
On Hold
Cross Site Scripting
12.12.2018
On Hold
Cross Site Scripting
12.12.2018
On Hold
Cross Site Scripting
12.12.2018
On Hold
Cross Site Scripting
12.12.2018
On Hold
Cross Site Scripting
12.12.2018
On Hold
Cross Site Scripting
12.12.2018
On Hold
Cross Site Scripting
12.12.2018
On Hold
Cross Site Scripting

  Latest Patched

      ukrinform.ru
    Patched on 12.12.2018
      footballguys.com
    Patched on 12.12.2018
      grandgames.net
    Patched on 11.12.2018
      jackpot.de
    Patched on 11.12.2018
      avangate.com
    Patched on 11.12.2018
      edjoin.org
    Patched on 10.12.2018
      rabota.ua
    Patched on 10.12.2018
      casetify.com
    Patched on 10.12.2018
      pagalworld.org
    Patched on 10.12.2018
      bn.com.pe
    Patched on 09.12.2018

  Recent Recommendations

    11 December, 2018
     DolunayBakar:
Thanks to Armin to pointing us a XSS Vulnerability on our webpresence
    10 December, 2018
     openDemokrat:
Thank you for helping us to discover the XSS vulnerabilities on our sites. Because of you we managed to improve our security.
    7 December, 2018
     idmocanu:
Thank you for helping us to discover the XSS vulnerabilities on our sites. Because of you we managed to improve our security.
    7 December, 2018
     MihmSteve:
Thank you very much for the XSS reporting and assistance in remediation of this issue. It is very much appreciated!
    7 December, 2018
     PhilippeMachler:
Thank you very much for your report and your help.
We highly appreciate this.