Report Email Alerts Open Bug Bounty: 136,257 coordinated disclosures
Full Disclosure: 32,606 vulnerabilities
Total Vulnerabilities Fixed: 41,356
138,738 vulnerable websites, 14,971 VIP websites
3,346 security researchers, 4,370 notification subscribers

sinkmanu | Security Researcher Profile

Security researcher sinkmanu has already helped fix 59 vulnerabilities.

Follow me on:
Twitter

About me:
Developer and security researcher

How to contact me:
[email protected]
PGP 0x6C3FA9ABD7CC68DD


Research Statistics



Approved XSS vulnerabilities:178
Approved XSS vulnerabilities on VIP websites:42
Patched vulnerabilities:59
Verified vulnerabilities on Hold (Open Bug Bounty):2
Active since:08.10.2014

Awards and Achievements

Advanced Research and Outstanding Achievements

WAF Bypasser
Secured OBB
Bug Bounty Lord
Coordinated Disclosure
Fastest Fix
Fix in 24 hours

Number of Secured Websites

10+ Websites
50+ Websites
500+ Websites
WEB SECURITY VETERAN
1000+ Websites

Commitment to Responsible Disclosure

Patch Master
70% Patched
Patch Guru
80% Patched
Patch Lord
90% Patched

Recommendations and Recognition

REPUTABLE
30+ Recommends
FAMOUS
50+ Recommends
GLOBALLY TRUSTED
100+ Recommends

CSRF Craftsmanship

CSRF Pro
10+ Reports
CSRF Master
50+ Reports
CSRF Guru
100+ Reports

Application Logic Craftsmanship

AppSec Logic Pro
10+ Reports
AppSec Logic Master
50+ Reports
AppSec Logic Guru
100+ Reports

VIP Submissions

MADE WEB SAFER
250+ VIPs
SECURITY EVANGELIST
500+ VIPs

Quantity of Reports

10+ Reports
50+ Reports
500+ Reports
CYBERLORD
1000+ Reports

Recommendations and Acknowledgements

3 April, 2016
neraner Neran from HelpOnClick:

Thank you for providing the information and for the prompt communication!

22 March, 2016
yjmbo Jim Cheetham from University of Otago:

We appreciate the responsible disclosure of the vulnerability discovered, and the quick response when asked for details. @sinkmanu found a valid exploit in a function that was already protected - just not protected enough!

Please login via Twitter to add a recommendation


Reported Vulnerabilities

All Submissions VIP Submissions

Domain Reported Status Type
15.08.2015
patched
XSS  (Full Disclosure)
16.07.2015
unpatched
XSS  (Full Disclosure)
20.05.2015
unpatched
XSS  (Full Disclosure)
24.04.2015
patched
XSS  (Full Disclosure)
23.02.2015
patched
XSS  (Full Disclosure)
24.01.2015
patched
XSS  (Full Disclosure)
23.01.2015
patched
XSS  (Full Disclosure)
16.01.2015
patched
XSS  (Full Disclosure)
11.01.2015
unpatched
XSS  (Full Disclosure)
11.01.2015
patched
XSS  (Full Disclosure)
06.01.2015
unpatched
OR   (Full Disclosure)
12.12.2014
unpatched
XSS  (Full Disclosure)
23.11.2014
unpatched
OR   (Full Disclosure)
21.11.2014
unpatched
XSS  (Full Disclosure)
21.11.2014
patched
XSS  (Full Disclosure)
01.11.2014
unpatched
XSS  (Full Disclosure)
31.10.2014
unpatched
XSS  (Full Disclosure)
18.10.2014
patched
OR   (Full Disclosure)
18.10.2014
unpatched
OR   (Full Disclosure)
18.10.2014
patched
OR   (Full Disclosure)


LATEST VIP SUBMISSIONS

newsmemory.com
Reported by npuser500 Badges received: 9
Recommendations received: 9
Approved XSS vulnerabilities: 1476
Approved XSS vulnerabilities on VIP websites: 238
on 20.07.2017
drivy.com
Reported by hackdemonium Twitter: @hackdemonium
Badges received: 10
Recommendations received: 7
Approved XSS vulnerabilities: 1326
Approved XSS vulnerabilities on VIP websites: 646
on 20.07.2017
brabys.com
Reported by hackdemonium Twitter: @hackdemonium
Badges received: 10
Recommendations received: 7
Approved XSS vulnerabilities: 1326
Approved XSS vulnerabilities on VIP websites: 646
on 20.07.2017
momentodonna.it
Reported by hackdemonium Twitter: @hackdemonium
Badges received: 10
Recommendations received: 7
Approved XSS vulnerabilities: 1326
Approved XSS vulnerabilities on VIP websites: 646
on 20.07.2017
junpin360.com
Reported by hackdemonium Twitter: @hackdemonium
Badges received: 10
Recommendations received: 7
Approved XSS vulnerabilities: 1326
Approved XSS vulnerabilities on VIP websites: 646
on 20.07.2017
haozu.com
Reported by hackdemonium Twitter: @hackdemonium
Badges received: 10
Recommendations received: 7
Approved XSS vulnerabilities: 1326
Approved XSS vulnerabilities on VIP websites: 646
on 20.07.2017
unipa.it
Reported by hackdemonium Twitter: @hackdemonium
Badges received: 10
Recommendations received: 7
Approved XSS vulnerabilities: 1326
Approved XSS vulnerabilities on VIP websites: 646
on 20.07.2017
volantinofacile.it
Reported by hackdemonium Twitter: @hackdemonium
Badges received: 10
Recommendations received: 7
Approved XSS vulnerabilities: 1326
Approved XSS vulnerabilities on VIP websites: 646
on 20.07.2017
m.rssing.com
Reported by rj01 Twitter: @RoyJansen_01
Badges received: 8
Recommendations received: 11
Approved XSS vulnerabilities: 1508
Approved XSS vulnerabilities on VIP websites: 293
on 20.07.2017
mobile.rssing.com
Reported by rj01 Twitter: @RoyJansen_01
Badges received: 8
Recommendations received: 11
Approved XSS vulnerabilities: 1508
Approved XSS vulnerabilities on VIP websites: 293
on 20.07.2017



LATEST SUBMISSIONS

oportunityleiloes.auctionserver.net
Reported by MiguelSantareno Badges received: 4
Recommendations received: 3
Approved XSS vulnerabilities: 292
Approved XSS vulnerabilities on VIP websites: 57
on 20.07.2017
odivelas.com
Reported by MiguelSantareno Badges received: 4
Recommendations received: 3
Approved XSS vulnerabilities: 292
Approved XSS vulnerabilities on VIP websites: 57
on 20.07.2017
lojamusica.com
Reported by MiguelSantareno Badges received: 4
Recommendations received: 3
Approved XSS vulnerabilities: 292
Approved XSS vulnerabilities on VIP websites: 57
on 20.07.2017
usato.it
Reported by hackdemonium Twitter: @hackdemonium
Badges received: 10
Recommendations received: 7
Approved XSS vulnerabilities: 1326
Approved XSS vulnerabilities on VIP websites: 646
on 20.07.2017
eedition.telegram.com
Reported by npuser500 Badges received: 9
Recommendations received: 9
Approved XSS vulnerabilities: 1476
Approved XSS vulnerabilities on VIP websites: 238
on 20.07.2017
gainesvillesun.fl.newsmemory.com
Reported by npuser500 Badges received: 9
Recommendations received: 9
Approved XSS vulnerabilities: 1476
Approved XSS vulnerabilities on VIP websites: 238
on 20.07.2017
store.shoplo.com
Reported by hackdemonium Twitter: @hackdemonium
Badges received: 10
Recommendations received: 7
Approved XSS vulnerabilities: 1326
Approved XSS vulnerabilities on VIP websites: 646
on 20.07.2017
eedition.tampabay.com
Reported by npuser500 Badges received: 9
Recommendations received: 9
Approved XSS vulnerabilities: 1476
Approved XSS vulnerabilities on VIP websites: 238
on 20.07.2017
rundel.de
Reported by secuninja Badges received: 7
Recommendations received: 16
Approved XSS vulnerabilities: 1996
Approved XSS vulnerabilities on VIP websites: 136
on 20.07.2017
metalnews.de
Reported by secuninja Badges received: 7
Recommendations received: 16
Approved XSS vulnerabilities: 1996
Approved XSS vulnerabilities on VIP websites: 136
on 20.07.2017