Security Hall of Fame

We would like to thank the following individuals and/or organizations, who have responsibly disclosed vulnerabilities to us.

Sagar Yadav

16 Apr 2022

Reported possible information leakage from a legacy service.

Hatim Chabik

13 Jan 2022

Reported a Reflective XSS attack on marketing sites.

Manu Sharma

31 May 2021

Reported a Reflective XSS attack on marketing sites.

Ghazanfar Ali Kazam

31 May 2021

Reported information leakage from an internal server.

Akash H. C.

9 September 2020

Reported a password reset token leak

Akash Patil

1 August 2020

Reported an account takeover using IDN homograph attack.

Pethuraj M

1 July 2020

Reported a flaw in our password reset flow

Miguel Santareno

14 May 2020

Reported information leakage from marketing sites.

Gaurav Kumar and Shivam Dattana / Team Bugmania

28 September 2019

Reported a Cross site scripting (XSS) on magereport.com.

Mike de Landgraaf / MDL Online

21 March 2019

Reported a misconfiguration that allowed user impersonation on Hypernode hosted webshops.

Maksym Bendeberia / WebSafety Ninja

12 March 2019

Reported information leakage from an internal deployment server.

Jan Piet van Dijk / Interwijs B.V.

28 August 2018

Reported a privilege escalation on Hypernode, leading to a local root exploit.

Wijnand Wieskamp / Crystalsoft B.V.

1 June 2018

Reported a misconfiguration that allowed a Hypernode’s preconfigured security settings to be bypassed.