Month: March 2014

For reporting some issues related to cookies I got acknowledged. http://content.scrumdo.com/credits.html

Reported many XSS and other web application related issues.  https://samsungtvbounty.com/HallOfFame.aspx

For reporting many XSS issues and many full path I got listed in their release notes.  https://www.concrete5.org/documentation/background/version_history/5-6-3-release-notes/

Found DOM XSS in the index it self. For reporting it I got a nice certificate.

For the 5th Time in Nokia 🙂 http://www.nokia.com/global/security/acknowledgements/

For reporting many issues related to web applications I got acknowledged by Sbudget. https://www.sbudget.com/people.pl

Reported a issue related to session cookies. http://help.dribbble.com/customer/portal/articles/1436528-responsible-security-disclosure-policy

For reporting a issue in e-mail validation I got acknowledged. https://www.ribose.com/security/hall_of_fame

Update:

Thanks a lot for the gifts ~!

I was able to bypass their XSS filter and also found a issue with session cookies. For my responsible disclosure I got acknowledged.

For reporting a issue related to cookies I got acknowledged.  https://c2fo.com/about/security-response/