Coordinated and Responsible Vulnerability Disclosure Free Bug Bounty Program 277,741 coordinated disclosures
160,074 fixed vulnerabilities
223,050 websites, 17,613 VIP websites
7,418 researchers, 6,915 subscribers

waiyanaun9 Top VIP Security Researcher of the Month | Security Researcher Profile


Security researcher waiyanaun9 has already helped fix 616 vulnerabilities.



Researcher reputation:  10

Real name:
Wai Yan Aung

How to contact me:
[email protected]

Alternative Contacts:
Twitter - https://www.twitter.com/waiyanaun9
LinkedIn - https://www.linkedin.com/in/waiyanaun9

Experience in Application Security
1-3 years

Recommendations and Acknowledgements

    7 March, 2018
     RexChang007 Rex from MSI:
Thanks for Wai Yan's work for us to find our vulnerabilities of *.msi.com earlier.

Please login via Twitter to add a recommendation

Awards and Achievements


Number of Secured Websites

10+ Websites
50+ Websites
500+ Websites
WEB SECURITY VETERAN
1000+ Websites

Advanced Security Research

WAF Bypasser
CSRF Master
30+ Reports
AppSec Logic Master
30+ Reports
Fastest Fix
Fix in 24 hours

Outstanding Achievements

Secured OBB
OBB Advocate
Improved OBB

Commitment to Remediate and Patch

Patch Master
55% Patched
Patch Guru
65% Patched
Patch Lord
75% Patched

Recommendations and Recognition

REPUTABLE
10+ Recommends
FAMOUS
25+ Recommends
GLOBALLY TRUSTED
50+ Recommends

Research Statistics



Total reports:754
Total reports on VIP sites:4
Total patched vulnerabilities:616
Total vulnerabilities on Hold (Open Bug Bounty):9
Recommendations received:1
Active since:04.01.2018
Top Security Researcher Awards: Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month Top Security Researcher of the Month

Open Bug Bounty Certificate



Reported Vulnerabilities

All Submissions VIP Submissions

Domain Reported Status Type
03.09.2018
On Hold
Cross Site Scripting
19.08.2018
patched
Cross Site Scripting
11.07.2018
On Hold
Cross Site Scripting
29.05.2018
On Hold
Open Redirect
16.05.2018
patched
Open Redirect
16.05.2018
patched
Open Redirect
16.05.2018
patched
Open Redirect
16.05.2018
patched
Open Redirect
16.05.2018
patched
Open Redirect
16.05.2018
unpatched
Open Redirect
16.05.2018
unpatched
Open Redirect
16.05.2018
unpatched
Open Redirect
16.05.2018
unpatched
Open Redirect
16.05.2018
unpatched
Open Redirect
16.05.2018
unpatched
Improper Access Control 
16.05.2018
unpatched
Open Redirect
16.05.2018
unpatched
Open Redirect
16.05.2018
unpatched
Open Redirect
16.05.2018
unpatched
Open Redirect
16.05.2018
unpatched
Open Redirect

  Latest Patched

      deskgram.org
    Patched on 15.10.2018
      playboyplus.com
    Patched on 15.10.2018
      howtopronounce.com
    Patched on 15.10.2018
      timeturk.com
    Patched on 15.10.2018
      polar.com
    Patched on 15.10.2018
      firstpost.com
    Patched on 15.10.2018
      audible.com
    Patched on 14.10.2018
      bakeca.it
    Patched on 14.10.2018
      godaddy.com
    Patched on 14.10.2018
      1111.com.tw
    Patched on 14.10.2018

  Recent Recommendations

    15 October, 2018
     LimangoI:
Hallo Armin,
vielen Dank für die Meldung einer Sicherheitslücke auf unserem Reiseportal und für die konstruktive und proaktive Unterstützung!
Viele Grüße, Michael
    14 October, 2018
     HezMonaghan:
Super quick to reply, open and transparent. HUGE thanks to pointing out some issues!
    12 October, 2018
     chrishadley:
Diego was helpful in disclosing and providing details about an XSS vulnerability, which we have since patched. Thanks!
    11 October, 2018
     wiesenbacher:
Thank You Eduardo! I fixed the Problem on 2018/10/08. But unfortunately you forgot to switch my Status to "patched". You wrote me, you have done this. Did you found later an other security Risk?
    10 October, 2018
     whitedataDE:
Thank you for your XSS report and fast response