Report Email Alerts Full Disclosure: 19477 vulnerabilities, 3527 fixed
Open Bug Bounty: 60 coordinated disclosures, 0 fixed
16402 vulnerable websites, 3096 VIP websites
431 security researchers, 1035 notification subscribers

Top Alexa Rank Websites

baidu.com by BruteLogic Position in TOP-50 XSS Researchers: 1
Position in TOP-50 VIP XSS Researchers: 2
Approved XSS vulnerabilities: 1474
Approved XSS vulnerabilities on VIP websites: 485

amazon.com by MLT Twitter: @0x00000049
Position in TOP-50 XSS Researchers: 5
Position in TOP-50 VIP XSS Researchers: 13
Approved XSS vulnerabilities: 804
Approved XSS vulnerabilities on VIP websites: 83

taobao.com by wangjing

linkedin.com by BruteLogic Position in TOP-50 XSS Researchers: 1
Position in TOP-50 VIP XSS Researchers: 2
Approved XSS vulnerabilities: 1474
Approved XSS vulnerabilities on VIP websites: 485

tmall.com by Buglloc

amazon.co.jp by MLT Twitter: @0x00000049
Position in TOP-50 XSS Researchers: 5
Position in TOP-50 VIP XSS Researchers: 13
Approved XSS vulnerabilities: 804
Approved XSS vulnerabilities on VIP websites: 83

ask.com by SymbianSyMoh

microsoft.com by E1337

imgur.com by MLT Twitter: @0x00000049
Position in TOP-50 XSS Researchers: 5
Position in TOP-50 VIP XSS Researchers: 13
Approved XSS vulnerabilities: 804
Approved XSS vulnerabilities on VIP websites: 83

imdb.com by tbm Position in TOP-50 XSS Researchers: 23
Position in TOP-50 VIP XSS Researchers: 17
Approved XSS vulnerabilities: 181
Approved XSS vulnerabilities on VIP websites: 53

craigslist.org by xsscrapy

amazon.de by PsychoMantis Twitter: @Psycho_Mantis__
Position in TOP-50 XSS Researchers: 3
Position in TOP-50 VIP XSS Researchers: 3
Approved XSS vulnerabilities: 1086
Approved XSS vulnerabilities on VIP websites: 340

xhamster.com by Nasrul07 Twitter: @nasrulseven
Position in TOP-50 XSS Researchers: 18
Position in TOP-50 VIP XSS Researchers: 7
Approved XSS vulnerabilities: 328
Approved XSS vulnerabilities on VIP websites: 186

bbc.co.uk by SecBit

amazon.co.uk by MLT Twitter: @0x00000049
Position in TOP-50 XSS Researchers: 5
Position in TOP-50 VIP XSS Researchers: 13
Approved XSS vulnerabilities: 804
Approved XSS vulnerabilities on VIP websites: 83

espn.go.com by BruteLogic Position in TOP-50 XSS Researchers: 1
Position in TOP-50 VIP XSS Researchers: 2
Approved XSS vulnerabilities: 1474
Approved XSS vulnerabilities on VIP websites: 485

pornhub.com by Buglloc

amazon.cn by PsychoMantis Twitter: @Psycho_Mantis__
Position in TOP-50 XSS Researchers: 3
Position in TOP-50 VIP XSS Researchers: 3
Approved XSS vulnerabilities: 1086
Approved XSS vulnerabilities on VIP websites: 340

ebay.de by Tactic4l

si.com by v0raz Twitter: @v0raz
Position in TOP-50 XSS Researchers: 6
Position in TOP-50 VIP XSS Researchers: 1
Approved XSS vulnerabilities: 707
Approved XSS vulnerabilities on VIP websites: 408

adobe.com by bankir

dailymail.co.uk by xsscrapy

huffingtonpost.com by yarbabin Twitter: @yarbabin
Position in TOP-50 XSS Researchers: 28
Position in TOP-50 VIP XSS Researchers: 8
Approved XSS vulnerabilities: 147
Approved XSS vulnerabilities on VIP websites: 125

indiatimes.com by wangjing

booking.com by xsscrapy

nytimes.com by nopernik

wikia.com by BruteLogic Position in TOP-50 XSS Researchers: 1
Position in TOP-50 VIP XSS Researchers: 2
Approved XSS vulnerabilities: 1474
Approved XSS vulnerabilities on VIP websites: 485

outbrain.com by BruteLogic Position in TOP-50 XSS Researchers: 1
Position in TOP-50 VIP XSS Researchers: 2
Approved XSS vulnerabilities: 1474
Approved XSS vulnerabilities on VIP websites: 485

chase.com by v0raz Twitter: @v0raz
Position in TOP-50 XSS Researchers: 6
Position in TOP-50 VIP XSS Researchers: 1
Approved XSS vulnerabilities: 707
Approved XSS vulnerabilities on VIP websites: 408

youporn.com by Nasrul07 Twitter: @nasrulseven
Position in TOP-50 XSS Researchers: 18
Position in TOP-50 VIP XSS Researchers: 7
Approved XSS vulnerabilities: 328
Approved XSS vulnerabilities on VIP websites: 186

TOP XSS Researchers

NRockhouse
Reported 27 vulnerable websites

NRockhouse
Reported 12 vulnerable websites

V1RUS4
Reported 9 vulnerable websites

Tactic4l
Reported 5 vulnerable websites

V1RUS4
Reported 923 vulnerable websites

watt
Reported 687 vulnerable websites

en4rab
Reported 582 vulnerable websites

Rahuldk
Reported 334 vulnerable websites

Dshellnoi_Unix
Reported 264 vulnerable websites

SecBit
Reported 256 vulnerable websites

Latest Submissions

yougen.co.uk
XSS by MichalKoczwara Twitter: @MichalKoczwara
Approved XSS vulnerabilities: 30
Approved XSS vulnerabilities on VIP websites: 1
06/07/2015

74.ru
XSS by dim0k Twitter: @d1m0ck
Position in TOP-50 XSS Researchers: 11
Position in TOP-50 VIP XSS Researchers: 11
Approved XSS vulnerabilities: 442
Approved XSS vulnerabilities on VIP websites: 111
06/07/2015

ducti.co.uk
XSS by MichalKoczwara Twitter: @MichalKoczwara
Approved XSS vulnerabilities: 30
Approved XSS vulnerabilities on VIP websites: 1
06/07/2015

74.ru
XSS by dim0k Twitter: @d1m0ck
Position in TOP-50 XSS Researchers: 11
Position in TOP-50 VIP XSS Researchers: 11
Approved XSS vulnerabilities: 442
Approved XSS vulnerabilities on VIP websites: 111
06/07/2015

apacheonline.co.uk
XSS by MichalKoczwara Twitter: @MichalKoczwara
Approved XSS vulnerabilities: 30
Approved XSS vulnerabilities on VIP websites: 1
06/07/2015

russgo.com
Open Redirect by dim0k Twitter: @d1m0ck
Position in TOP-50 XSS Researchers: 11
Position in TOP-50 VIP XSS Researchers: 11
Approved XSS vulnerabilities: 442
Approved XSS vulnerabilities on VIP websites: 111
06/07/2015

swansea-honda.co.uk
XSS by MichalKoczwara Twitter: @MichalKoczwara
Approved XSS vulnerabilities: 30
Approved XSS vulnerabilities on VIP websites: 1
06/07/2015

google.com
Open Redirect by MLT Twitter: @0x00000049
Position in TOP-50 XSS Researchers: 5
Position in TOP-50 VIP XSS Researchers: 13
Approved XSS vulnerabilities: 804
Approved XSS vulnerabilities on VIP websites: 83
06/07/2015

keek.com
XSS by Lov3rDns 05/07/2015

dhp.org.uk
XSS by MichalKoczwara Twitter: @MichalKoczwara
Approved XSS vulnerabilities: 30
Approved XSS vulnerabilities on VIP websites: 1
06/07/2015

vendosmartphone.mx
XSS by w0rmpois0n Twitter: @w0rmpois0n
Approved XSS vulnerabilities: 22
Approved XSS vulnerabilities on VIP websites: 1
05/07/2015

techkrepfc.com
XSS by dim0k Twitter: @d1m0ck
Position in TOP-50 XSS Researchers: 11
Position in TOP-50 VIP XSS Researchers: 11
Approved XSS vulnerabilities: 442
Approved XSS vulnerabilities on VIP websites: 111
05/07/2015

drom.ru
XSS by dim0k Twitter: @d1m0ck
Position in TOP-50 XSS Researchers: 11
Position in TOP-50 VIP XSS Researchers: 11
Approved XSS vulnerabilities: 442
Approved XSS vulnerabilities on VIP websites: 111
05/07/2015

megustaleer.com.ar
XSS by w0rmpois0n Twitter: @w0rmpois0n
Approved XSS vulnerabilities: 22
Approved XSS vulnerabilities on VIP websites: 1
05/07/2015

uniweb.no
XSS by algalopez Twitter: @mralgalopez
Position in TOP-50 XSS Researchers: 21
Position in TOP-50 VIP XSS Researchers: 22
Approved XSS vulnerabilities: 190
Approved XSS vulnerabilities on VIP websites: 38
06/07/2015

trekkinn.com
XSS by algalopez Twitter: @mralgalopez
Position in TOP-50 XSS Researchers: 21
Position in TOP-50 VIP XSS Researchers: 22
Approved XSS vulnerabilities: 190
Approved XSS vulnerabilities on VIP websites: 38
04/07/2015

mullingar.ie
XSS by DoctorDoom10 Twitter: @DoctorDoom10
Approved XSS vulnerabilities: 1
04/07/2015

teknokulis.com
XSS by tbm Position in TOP-50 XSS Researchers: 23
Position in TOP-50 VIP XSS Researchers: 17
Approved XSS vulnerabilities: 181
Approved XSS vulnerabilities on VIP websites: 53
04/07/2015

whydowork.com
XSS by billyzane Position in TOP-50 XSS Researchers: 10
Position in TOP-50 VIP XSS Researchers: 24
Approved XSS vulnerabilities: 535
Approved XSS vulnerabilities on VIP websites: 54
04/07/2015

cinepolis.com.pe
XSS by B4rt Twitter: @bl00dy_B4rt
Position in TOP-50 XSS Researchers: 36
Position in TOP-50 VIP XSS Researchers: 28
Approved XSS vulnerabilities: 102
Approved XSS vulnerabilities on VIP websites: 31
04/07/2015

Top Google PR Websites

edx.org by PsychoMantis Twitter: @Psycho_Mantis__
Position in TOP-50 XSS Researchers: 3
Position in TOP-50 VIP XSS Researchers: 3
Approved XSS vulnerabilities: 1086
Approved XSS vulnerabilities on VIP websites: 340

theeuropeanlibrary.org by BruteLogic Position in TOP-50 XSS Researchers: 1
Position in TOP-50 VIP XSS Researchers: 2
Approved XSS vulnerabilities: 1474
Approved XSS vulnerabilities on VIP websites: 485

addthis.com by yarbabin Twitter: @yarbabin
Position in TOP-50 XSS Researchers: 28
Position in TOP-50 VIP XSS Researchers: 8
Approved XSS vulnerabilities: 147
Approved XSS vulnerabilities on VIP websites: 125

culture.gouv.fr by conslight Twitter: @conslight
Approved XSS vulnerabilities: 1
Approved XSS vulnerabilities on VIP websites: 1

nature.com by PsychoMantis Twitter: @Psycho_Mantis__
Position in TOP-50 XSS Researchers: 3
Position in TOP-50 VIP XSS Researchers: 3
Approved XSS vulnerabilities: 1086
Approved XSS vulnerabilities on VIP websites: 340

business.usa.gov by BruteLogic Position in TOP-50 XSS Researchers: 1
Position in TOP-50 VIP XSS Researchers: 2
Approved XSS vulnerabilities: 1474
Approved XSS vulnerabilities on VIP websites: 485

groups.csail.mit.edu by PsychoMantis Twitter: @Psycho_Mantis__
Position in TOP-50 XSS Researchers: 3
Position in TOP-50 VIP XSS Researchers: 3
Approved XSS vulnerabilities: 1086
Approved XSS vulnerabilities on VIP websites: 340

worldcat.org by e3xpl0it Twitter: @e3xpl0it
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 5
Approved XSS vulnerabilities: 481
Approved XSS vulnerabilities on VIP websites: 241

cervantesvirtual.com by Stuxnet Twitter: @_Stuxnet
Position in TOP-50 XSS Researchers: 2
Position in TOP-50 VIP XSS Researchers: 12
Approved XSS vulnerabilities: 1222
Approved XSS vulnerabilities on VIP websites: 88

flickr.com by e3xpl0it Twitter: @e3xpl0it
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 5
Approved XSS vulnerabilities: 481
Approved XSS vulnerabilities on VIP websites: 241

linkedin.com by BruteLogic Position in TOP-50 XSS Researchers: 1
Position in TOP-50 VIP XSS Researchers: 2
Approved XSS vulnerabilities: 1474
Approved XSS vulnerabilities on VIP websites: 485

topuniversities.com by Abnoxious Position in TOP-50 XSS Researchers: 12
Position in TOP-50 VIP XSS Researchers: 10
Approved XSS vulnerabilities: 381
Approved XSS vulnerabilities on VIP websites: 112

easycounter.com by e3xpl0it Twitter: @e3xpl0it
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 5
Approved XSS vulnerabilities: 481
Approved XSS vulnerabilities on VIP websites: 241

baidu.com.cn by BruteLogic Position in TOP-50 XSS Researchers: 1
Position in TOP-50 VIP XSS Researchers: 2
Approved XSS vulnerabilities: 1474
Approved XSS vulnerabilities on VIP websites: 485

baidu.cn by BruteLogic Position in TOP-50 XSS Researchers: 1
Position in TOP-50 VIP XSS Researchers: 2
Approved XSS vulnerabilities: 1474
Approved XSS vulnerabilities on VIP websites: 485

baidu.com by BruteLogic Position in TOP-50 XSS Researchers: 1
Position in TOP-50 VIP XSS Researchers: 2
Approved XSS vulnerabilities: 1474
Approved XSS vulnerabilities on VIP websites: 485

bbc.co.uk by PsychoMantis Twitter: @Psycho_Mantis__
Position in TOP-50 XSS Researchers: 3
Position in TOP-50 VIP XSS Researchers: 3
Approved XSS vulnerabilities: 1086
Approved XSS vulnerabilities on VIP websites: 340

un.org by PsychoMantis Twitter: @Psycho_Mantis__
Position in TOP-50 XSS Researchers: 3
Position in TOP-50 VIP XSS Researchers: 3
Approved XSS vulnerabilities: 1086
Approved XSS vulnerabilities on VIP websites: 340

europa.eu by PsychoMantis Twitter: @Psycho_Mantis__
Position in TOP-50 XSS Researchers: 3
Position in TOP-50 VIP XSS Researchers: 3
Approved XSS vulnerabilities: 1086
Approved XSS vulnerabilities on VIP websites: 340

web.mit.edu by PsychoMantis Twitter: @Psycho_Mantis__
Position in TOP-50 XSS Researchers: 3
Position in TOP-50 VIP XSS Researchers: 3
Approved XSS vulnerabilities: 1086
Approved XSS vulnerabilities on VIP websites: 340

goturkey.com by initbar

ec.europa.eu by PsychoMantis Twitter: @Psycho_Mantis__
Position in TOP-50 XSS Researchers: 3
Position in TOP-50 VIP XSS Researchers: 3
Approved XSS vulnerabilities: 1086
Approved XSS vulnerabilities on VIP websites: 340

governoeletronico.gov.br by PsychoMantis Twitter: @Psycho_Mantis__
Position in TOP-50 XSS Researchers: 3
Position in TOP-50 VIP XSS Researchers: 3
Approved XSS vulnerabilities: 1086
Approved XSS vulnerabilities on VIP websites: 340

stanford.edu by PsychoMantis Twitter: @Psycho_Mantis__
Position in TOP-50 XSS Researchers: 3
Position in TOP-50 VIP XSS Researchers: 3
Approved XSS vulnerabilities: 1086
Approved XSS vulnerabilities on VIP websites: 340

legifrance.gouv.fr by PsychoMantis Twitter: @Psycho_Mantis__
Position in TOP-50 XSS Researchers: 3
Position in TOP-50 VIP XSS Researchers: 3
Approved XSS vulnerabilities: 1086
Approved XSS vulnerabilities on VIP websites: 340

cnrs.fr by Anonymous

loc.gov by PyschoMantis

mailchimp.com by nopernik

nytimes.com by nopernik

adobe.com by bankir

TOP VIP XSS Researchers

ral249
Reported 16 vulnerable VIP websites

ral249
Reported 16 vulnerable VIP websites

NRockhouse
Reported 2 vulnerable VIP websites

Tactic4l
Reported 18 vulnerable VIP websites

V1RUS4
Reported 23 vulnerable VIP websites

watt
Reported 138 vulnerable VIP websites

en4rab
Reported 110 vulnerable VIP websites

SecBit
Reported 92 vulnerable VIP websites

nopernik
Reported 65 vulnerable VIP websites

E1337
Reported 61 vulnerable VIP websites

initbar
Reported 54 vulnerable VIP websites

NewLife705
Reported 46 vulnerable VIP websites

Toggaf
Reported 39 vulnerable VIP websites

Unpatched VIP Websites

search.vivastreet.co.in
125 unpatched vulnerabilities

expatads.com
96 unpatched vulnerabilities

gob.mx
66 unpatched vulnerabilities

fnp.com
29 unpatched vulnerabilities

freakshare.com
25 unpatched vulnerabilities

opensecrets.org
22 unpatched vulnerabilities

ask.com
20 unpatched vulnerabilities

orpha.net
15 unpatched vulnerabilities

stanford.edu
15 unpatched vulnerabilities

edu.cn
16 unpatched vulnerabilities

zoomby.ru
13 unpatched vulnerabilities

novell.com
16 unpatched vulnerabilities

espn.go.com
20 unpatched vulnerabilities

reference.com
18 unpatched vulnerabilities

mlb.com
14 unpatched vulnerabilities

about.com
14 unpatched vulnerabilities

okezone.com
12 unpatched vulnerabilities

noaa.gov
15 unpatched vulnerabilities

shop.com
12 unpatched vulnerabilities

europa.eu
18 unpatched vulnerabilities

Making Web Safer

These websites fixed security vulnerabilities thanks to our researchers who reported vulnerabilities via Full Disclosure.

Read how to participate in Open Bug Bounty program for you own and common benefit.

On the 06/07/2015 administration of wallpapers.filmibeat.com fixed XSS vulnerability reported by security researcher dim0k. Website wallpapers.filmibeat.com was vulnerable for 1 day since notification, now the vulnerability is patched.

On the 06/07/2015 administration of filmibeat.com fixed XSS vulnerability reported by security researcher dim0k. Website filmibeat.com was vulnerable for 1 day since notification, now the vulnerability is patched.

On the 06/07/2015 administration of gardenparkmedical.com fixed XSS vulnerability reported by security researcher billyzane. Website gardenparkmedical.com was vulnerable for 23 days since notification, now the vulnerability is patched.

On the 06/07/2015 administration of medicalcenterofmckinney.com fixed XSS vulnerability reported by security researcher billyzane. Website medicalcenterofmckinney.com was vulnerable for 22 days since notification, now the vulnerability is patched.

On the 06/07/2015 administration of bureau-vallee.fr fixed XSS vulnerability reported by security researcher RootByte. Website bureau-vallee.fr was vulnerable for 38 days since notification, now the vulnerability is patched.

On the 06/07/2015 administration of themeworld.com fixed XSS vulnerability reported by security researcher Stuxnet. Website themeworld.com was vulnerable for 39 days since notification, now the vulnerability is patched.

On the 06/07/2015 administration of barnesandnoble.com fixed XSS vulnerability reported by security researcher v0raz. Website barnesandnoble.com was vulnerable for 40 days since notification, now the vulnerability is patched.

On the 06/07/2015 administration of milenio.com fixed XSS vulnerability reported by security researcher PsychoMantis. Website milenio.com was vulnerable for 23 days since notification, now the vulnerability is patched.

On the 06/07/2015 administration of insurancetech.com fixed XSS vulnerability reported by security researcher BruteLogic. Website insurancetech.com was vulnerable for 39 days since notification, now the vulnerability is patched.

On the 06/07/2015 administration of lakecitymedical.com fixed XSS vulnerability reported by security researcher billyzane. Website lakecitymedical.com was vulnerable for 23 days since notification, now the vulnerability is patched.