Report a Vulnerability
Submit, help fixing, get kudos.
Start a Bug Bounty
Run your bounty program for free.
637,127 coordinated disclosures
405,662 fixed vulnerabilities
958 bug bounties with 1,902 websites
19,192 researchers, 1211 honor badges

polyomino | Security Researcher Profile


Security researcher polyomino has already helped fix 26 vulnerabilities.



Researcher reputation:  0

About me:
Computer Science student from the UK.

How to contact me:
You can contact me via email at polyomino[at]protonmail.com

Recommendations and Acknowledgements

Please login via Twitter to add a recommendation

Honor Badges


Number of Secured Websites

10+ Secured Websites Badge
50+ Secured Websites Badge
500+ Secured Websites Badge
Web Security Veteran Badge
10+ Websites
50+ Websites
500+ Websites
WEB SECURITY VETERAN
1000+ Websites

Advanced Security Research

WAF Bypasser Badge
CSRF Master Badge
AppSec Logic Master Badge
Fastest Fix Badge
WAF Bypasser
CSRF Master
30+ Reports
AppSec Logic Master
30+ Reports
Fastest Fix
Fix in 24 hours

Outstanding Achievements

Secured OBB Badge
OBB Advocate Badge
Improved OBB Badge
Secured OBB
OBB Advocate
Improved OBB

Commitment to Remediate and Patch

Patch Master Badge
Patch Guru Badge
Patch Lord Badge
Patch Master
55% Patched
Patch Guru
65% Patched
Patch Lord
75% Patched

Recommendations and Recognition

REPUTABLE Badge
FAMOUS Badge
GLOBALLY TRUSTED Badge
REPUTABLE
10+ Recommends
FAMOUS
25+ Recommends
GLOBALLY TRUSTED
50+ Recommends

Distinguished Blog Author

Distinguished Blog Author Badge
Distinguished Blog Author Badge
Distinguished Blog Author Badge
1 Post
3 Posts
5+ Posts

Research Statistics



Total reports:38
Total reports on VIP sites:10
Total patched vulnerabilities:26
Active since:06.02.2016



No posts in blog yet


Reported Vulnerabilities

All Submissions VIP Submissions

  Latest Patched

 24.11.2020 8899.click
 24.11.2020 mundoprimaria.com
 24.11.2020 dsebd.org
 24.11.2020 healthychildren.org
 24.11.2020 mania.kr
 24.11.2020 giz.de
 24.11.2020 angop.ao
 23.11.2020 bestprice.gr
 23.11.2020 motor-fan.jp
 23.11.2020 ppt.cc

  Latest Blog Posts

26.10.2020 by _r00t1ng_
Bypass Addslashes using Multibyte Character
26.10.2020 by _r00t1ng_
One Payload to Inject them all - MultiQuery Injection
26.10.2020 by _r00t1ng_
Routed SQL Injection
26.10.2020 by _r00t1ng_
DIOS the SQL Injectors Weapon
26.10.2020 by p4c3n0g3
How to find AngularJS XSS

  Recent Recommendations

@vintage_griffin     23 November, 2020
    Twitter vintage_griffin:
Thank you Cyber_India for identifying and letting us know of an improperly secured server status page.
@iCoccyx     23 November, 2020
    Twitter iCoccyx:
Thank you RAVI for your quick reply and to report my problem. Good job ! You made the web better !
@SolidInnovation     18 November, 2020
    Twitter SolidInnovation:
Ankur discovered an XSS vulnerability on our site and contacted us. Thanks for finding this for us! Your valuable contribution has helped make our website more secure.
@AsictSoc     18 November, 2020
    Twitter AsictSoc:
Dear gdattacker,

the SOC of Politecnico di Milano would like to thank you for disclosing us a XSS vulnerability on our infrastructure.
@AsictSoc     18 November, 2020
    Twitter AsictSoc:
Dear devl00p,

the SOC of Politecnico di Milano would like to thank you for disclosing us multiple XSS vulnerabilities on our infrastructure.