Security Hall of Fame

We would like to thank the following individuals and/or organizations, who have responsibly disclosed vulnerabilities to us.


Arthur Sjouw / flooris	09 Jun 2023	Reported access control issues on a Hipex backup server
Yanick De Pater / Reqon B.V.	25 May 2023	Reported a privilege escalation issue on Hypernode
Swapnil Kothawade	03 Jan 2023	Reported access control issues in our git repository
Sagar Yadav	16 Apr 2022	Reported possible information leakage from a legacy service.
Hatim Chabik	13 Jan 2022	Reported a Reflective XSS attack on marketing sites.
Manu Sharma	31 May 2021	Reported a Reflective XSS attack on marketing sites.
Ghazanfar Ali Kazam	31 May 2021	Reported information leakage from an internal server.
Akash H. C.	9 September 2020	Reported a password reset token leak
Akash Patil	1 August 2020	Reported an account takeover using IDN homograph attack.
Pethuraj M	1 July 2020	Reported a flaw in our password reset flow
Miguel Santareno	14 May 2020	Reported information leakage from marketing sites.
Gaurav Kumar and Shivam Dattana / Team Bugmania	28 September 2019	Reported a Cross site scripting (XSS) on magereport.com.
Mike de Landgraaf / MDL Online	21 March 2019	Reported a misconfiguration that allowed user impersonation on Hypernode hosted webshops.
Maksym Bendeberia / WebSafety Ninja	12 March 2019	Reported information leakage from an internal deployment server.
Jan Piet van Dijk / Interwijs B.V.	28 August 2018	Reported a privilege escalation on Hypernode, leading to a local root exploit.
Wijnand Wieskamp / Crystalsoft B.V.	1 June 2018	Reported a misconfiguration that allowed a Hypernode’s preconfigured security settings to be bypassed.