Report a Vulnerability
Submit, help fixing, get kudos.
Start a Bug Bounty
Run your bounty program for free.
533,001 coordinated disclosures
287,959 fixed vulnerabilities
737 bug bounties with 1,452 websites
14,943 researchers, 1071 honor badges

ghozt | Security Researcher Profile


Security researcher ghozt has already helped fix 133 vulnerabilities.



Researcher reputation:  70

About me:
Infosec, web, member of CTF Team Beers4Flags

How to contact me:
[email protected] or DM on twitter
or irc.hackerzvoice.net #root-me

Experience in Application Security
1-3 years

Award / Bug Bounty I prefer:
Hall of fame
Bounty (paypal)
Goodies

Follow me on:
Twitter

Recommendations and Acknowledgements

    25 April, 2018
     Alecs_twitt Alecs from MDCU:
Un grand merci à ghozt pour l'alerte ! J'ai pu corriger une faille XSS grâce à lui. C'est rassurant de savoir que des gens sont là pour vous aider comme ça sans en profiter. Merci beaucoup ! :)
    16 May, 2018
     d_launay Dominique from RENATER:
Merci pour l'alerte et la réactivité.
    10 November, 2016
     djpod Julien from Djpod:
I fixed a XSS vuln on a search form, thank you man :)
    3 November, 2016
     givemethespi Renaud from aAa:
Thanks to ghozt, we fixed an XSS vuln. He is not asking anything else than to help, great guy !
    26 September, 2016
     _Shynn_ Seldell from IndieMag:
ghozt showed me an XSS vulnerability and helped me to fix it very quickly. Thanks a lot :)

Please login via Twitter to add a recommendation

Honor Badges


Number of Secured Websites

10+ Websites
50+ Websites
500+ Websites
WEB SECURITY VETERAN
1000+ Websites

Advanced Security Research

WAF Bypasser
CSRF Master
30+ Reports
AppSec Logic Master
30+ Reports
Fastest Fix
Fix in 24 hours

Outstanding Achievements

Secured OBB
OBB Advocate
Improved OBB

Commitment to Remediate and Patch

Patch Master
55% Patched
Patch Guru
65% Patched
Patch Lord
75% Patched

Recommendations and Recognition

REPUTABLE
10+ Recommends
FAMOUS
25+ Recommends
GLOBALLY TRUSTED
50+ Recommends

Distinguished Blog Author

1 Post
3 Posts
5+ Posts

Research Statistics



Total reports:235
Total reports on VIP sites:30
Total patched vulnerabilities:133
Recommendations received:5
Active since:12.09.2016



No posts in blog yet


Reported Vulnerabilities

All Submissions VIP SubmissionsFeatured Submissions

Domain Reported Status Type
04.09.2018
patched
Open Redirect
04.09.2018
unpatched
Open Redirect
04.09.2018
unpatched
Open Redirect
28.06.2018
patched
Cross Site Scripting
28.06.2018
patched
Cross Site Scripting
13.06.2018
unpatched
Cross Site Scripting
12.06.2018
patched
Cross Site Scripting
16.05.2018
patched
Cross Site Scripting
07.05.2018
unpatched
Cross Site Scripting
07.05.2018
unpatched
Cross Site Scripting
07.05.2018
unpatched
Cross Site Scripting
26.04.2018
unpatched
Cross Site Scripting
26.04.2018
unpatched
Cross Site Scripting
26.04.2018
unpatched
Cross Site Scripting
26.04.2018
patched
Cross Site Scripting
25.04.2018
unpatched
Cross Site Scripting
25.04.2018
patched
Cross Site Scripting
24.04.2018
unpatched
Cross Site Scripting
24.04.2018
unpatched
Cross Site Scripting
24.04.2018
patched
Cross Site Scripting

  Latest Patched

 03.04.2020 vdh.virginia.gov
 03.04.2020 rand.org
 03.04.2020 sbilife.co.in
 03.04.2020 reuters.com
 02.04.2020 animeid.tv
 02.04.2020 deadspin.com
 02.04.2020 dni.ru
 02.04.2020 marvel.com
 02.04.2020 qobuz.com
 02.04.2020 powweb.com

  Latest Blog Posts

12.03.2020 by Rando02355205
(Paypal) www.paypal.com [CSP High Level] - [XSS Reflected] - [Bug Bounty] - [Write Up]
08.03.2020 by CybeReports
JDECO.net XSS Vulnerability| CybeReports
29.02.2020 by Rando02355205
(Google) groups.google.com - [Stored XSS] - [Bug Bounty] - [WriteUp] - [24/02/2020]
10.02.2020 by 0xrocky
Stored XSS on h2biz.net
10.02.2020 by ismailtsdln
SQL Injection Payload List

  Recent Recommendations

    2 April, 2020
     EmanuelePisapia:
I have really appreciated this researcher for his great skill and communication. He found a cross site scripting vulnerability on our service and help us fixing it. I recommend Broly157. He's a A++ researcher
    31 March, 2020
     reinisroz:
Thanks much, anguhari, for providing detailed information about XSS bug, found on our website. Highly recommended and professional security researcher!
    31 March, 2020
     admonaut:
Many thanks for your support and assistance. Good job :-)
    31 March, 2020
     thisismeraul:
Thanks for finding this vulnerability for us. The corporate website is more secure now. Good job!
    31 March, 2020
     reinisroz:
Thanks researcher for pointing out the problems in our website.