Researcher reputation:  290

Real name:
irfan

About me:
A boutique service that provides consultancy for information security-related domain

How to contact me:
info[at]metamorfosec.com

Award / Bug Bounty I prefer:
Bug bounty payment via PayPal or Bank Transfer, a recommendation on my profile, and/or any interesting stuff or offer

Follow me on:
Twitter

Recommendations and Acknowledgements

    9 September, 2019

     Marcel93092047 Marcel Ruths from WIKA:

Thanks very much for the report! We were sure that everything was proteced, but apparently we missed some special places where the escaping wasn't sufficient. It is now fixed.

    19 August, 2019

     maxiorel Jan Polzer from Jan Polzer:

Thanks for reporting the problem and the vulnerability details.

    9 August, 2019

     johannmw Johann MW from AAK:

Thank you for finding the vulnerability on our website. It has been taken care of after your recommendations Good work !

    9 July, 2019

     mjimeneza Manu from Joma:

Thanks you very much for the advice about security issue in our site.

    8 July, 2019

     perlpunks Tina from perl-community.de:

Thanks very much for the report! I was pretty sure that everything was safe, but apparently I missed two places where the escaping wasn't sufficient.

    20 May, 2019

     LeifTher Leif from Gurusoft AS:

Thank you so much for reporting security vulnerability and for the information needed to fix the issues.

    13 May, 2019

     jesuscholiz jesus from Adevinta:

Thanks for your help! Your findings were accurate, and collaboration with you was easy. It's is glad to see responsible disclosures like yours, that help Companies to fix security bugs. Thanks!

    28 March, 2019

     yalwa Jens from Yalwa:

Thanks for making us aware of CSRF vulnerabilities on our websites! They're more secure now.

    1 March, 2019

     wirismath Llorenç from Wiris Math:

Thanks for reporting two bugs from our Math Suite Wiris Quizzes and CalcMe. It's now a better product thanks to you!

    5 February, 2019

     DomainMOD Greg Chetcuti from DomainMOD:

Thank you so much for reporting this vulnerability in a responsible manner! We were able to find and fix this specific vulnerability, as well as another that was related, and we really appreciate your help in getting this sorted out!

Shows the first 10 recommendations. See all.

Honor Badges

Number of Secured Websites

10+ Websites	50+ Websites	500+ Websites	WEB SECURITY VETERAN 1000+ Websites

Advanced Security Research

WAF Bypasser	CSRF Master 30+ Reports	AppSec Logic Master 30+ Reports	Fastest Fix Fix in 24 hours

Outstanding Achievements

Secured OBB	OBB Advocate	Improved OBB

Commitment to Remediate and Patch

Patch Master 55% Patched	Patch Guru 65% Patched	Patch Lord 75% Patched

Recommendations and Recognition

REPUTABLE 10+ Recommends	FAMOUS 25+ Recommends	GLOBALLY TRUSTED 50+ Recommends

Distinguished Blog Author

1 Post	3 Posts	5+ Posts

Research Statistics

Open Bug Bounty Certificate