Coordinated and Responsible Vulnerability Disclosure Free Bug Bounty Program 453,600 coordinated disclosures
242,168 fixed vulnerabilities
602 bug bounties with 1222 websites
12,250 researchers, 960 honor badges

edoardovignati | Security Researcher Profile


Security researcher edoardovignati has already helped fix 109 vulnerabilities.



Researcher reputation:  70

Real name:
Edoardo

About me:
I encourage you to contact me as soon as possible to have more info about the vulnerability.

Rewards are very appreciated.

How to contact me:
[email protected]

Alternative Contacts:
https://twitter.com/EdoardoVignati

Certifications & Diplomas:
Bachelor's degree in computer science

Experience in Application Security
1-3 years

Award / Bug Bounty I prefer:
Hall of fame
Bug Bounty (Paypal)
Job

Follow me on:
Twitter
LinkedIn

Recommendations and Acknowledgements

    22 January, 2019
     janunimi Jan from unimi.it:
Edoardo has discovered XSS and access control vulnerabilities on several of our university websites. He has handled discovery, communication and disclosure in a professional way.
    14 March, 2019
     maicolunimi maicol from unimi:
Edoardo helped us to discover XSS vulnerabilities on our website. He is very helpful and he is a smart vulnerability investigator. Thank you so much!
    3 December, 2018
     fcirino69 Francesco from Cirino:
Efficient management of an XSS on our website.
Excellent availability.
Thank you
    26 October, 2018
     RDMI12 Responsible Disclosure from CdM:
Very well handled responsible disclosure. It was a pleasure working with Edoardo on this case. Very well reported and straight to the point.
    23 April, 2018
     Zmx16976348 Larouanne from IDM:
Efficient and responsible handling of a XSS on one of our website.
Good communication.

Please login via Twitter to add a recommendation

Honor Badges


Number of Secured Websites

10+ Websites
50+ Websites
500+ Websites
WEB SECURITY VETERAN
1000+ Websites

Advanced Security Research

WAF Bypasser
CSRF Master
30+ Reports
AppSec Logic Master
30+ Reports
Fastest Fix
Fix in 24 hours

Outstanding Achievements

Secured OBB
OBB Advocate
Improved OBB

Commitment to Remediate and Patch

Patch Master
55% Patched
Patch Guru
65% Patched
Patch Lord
75% Patched

Recommendations and Recognition

REPUTABLE
10+ Recommends
FAMOUS
25+ Recommends
GLOBALLY TRUSTED
50+ Recommends

Distinguished Blog Author

1 Post
3 Posts
5+ Posts

Research Statistics



Total reports:315
Total reports on VIP sites:62
Total patched vulnerabilities:109
Total vulnerabilities on Hold (Open Bug Bounty):12
Recommendations received:5
Active since:02.02.2018
Top VIP Security Researcher Awards: Top VIP Security Researcher of the Week Top VIP Security Researcher of the Week

Open Bug Bounty Certificate





No posts in blog yet


Reported Vulnerabilities

All Submissions VIP Submissions

Domain Reported Status Type
05.04.2018
patched
Cross Site Scripting
23.03.2018
unpatched
Cross Site Scripting
23.03.2018
unpatched
Cross Site Scripting
23.03.2018
patched
Cross Site Scripting
23.03.2018
unpatched
Cross Site Scripting
23.03.2018
unpatched
Cross Site Scripting
23.03.2018
unpatched
Cross Site Scripting
23.03.2018
unpatched
Cross Site Scripting
23.03.2018
unpatched
Cross Site Scripting
22.03.2018
unpatched
Cross Site Scripting
22.03.2018
unpatched
Cross Site Scripting
22.03.2018
patched
Cross Site Scripting
22.03.2018
patched
Cross Site Scripting
22.03.2018
unpatched
Cross Site Scripting
22.03.2018
patched
Cross Site Scripting
22.03.2018
unpatched
Cross Site Scripting
22.03.2018
unpatched
Cross Site Scripting
22.03.2018
unpatched
Cross Site Scripting
22.03.2018
unpatched
Cross Site Scripting
22.03.2018
unpatched
Cross Site Scripting

  Latest Patched

 17.10.2019 smartbox.com
 17.10.2019 mightytext.net
 17.10.2019 timesunion.com
 17.10.2019 biggo.com.tw
 17.10.2019 the42.ie
 17.10.2019 hphim.tv
 17.10.2019 abcnews.go.com
 17.10.2019 maxsold.com
 16.10.2019 gramha.net

  Latest Blog Posts

17.10.2019 by geeknik
The "S" in IOT is for Security
16.10.2019 by darknetguy
Best XSS Vectors
01.10.2019 by Renzi25031469
#Security 100%
18.09.2019 by Leon
SSRF | Reading Local Files from DownNotifier server
13.09.2019 by drok3r
Collection of information | Google Hacking and Dorks basic

  Recent Recommendations

    17 October, 2019
     CosimoGdM:
A kudos to 0xrocky for his professional work in not using the identified vulnerabilities and alerting us
    17 October, 2019
     tschipie:
Thanks for the hint :)
Good work.
    17 October, 2019
     nickinckin:
Thanks to 0xrocky for identifying the vulnerability. Now we patched the vulnerability.
    17 October, 2019
     cloudrexx:
Thank you very much for making us aware of the issue and providing us a high quality vulnerability report which helped us identify the source of the vulnerability right away.
    16 October, 2019
     TravisSwaim:
Was very easy to contact Gh05tPT and get the information needed to help fix the vulnerability found on our website. Wonderful security researcher to deal with and I'm glad that people like this exist to help make the internet a more secure and safe place.