Report Email Alerts Full Disclosure: 22882 vulnerabilities, 4168 fixed
Open Bug Bounty: 2426 coordinated disclosures
20628 vulnerable websites, 3652 VIP websites
520 security researchers, 1113 notification subscribers

Top Alexa Rank Websites

baidu.com vulnerability
Full Disclosure by Brute Twitter: @brutelogic
Position in TOP-50 XSS Researchers: 2
Position in TOP-50 VIP XSS Researchers: 3
Approved XSS vulnerabilities: 1474
Approved XSS vulnerabilities on VIP websites: 485

amazon.com vulnerability
Full Disclosure by MLT Twitter: @ret2libc
Position in TOP-50 XSS Researchers: 4
Position in TOP-50 VIP XSS Researchers: 15
Approved XSS vulnerabilities: 1066
Approved XSS vulnerabilities on VIP websites: 96

taobao.com vulnerability
Full Disclosure by wangjing

linkedin.com vulnerability
Full Disclosure by Brute Twitter: @brutelogic
Position in TOP-50 XSS Researchers: 2
Position in TOP-50 VIP XSS Researchers: 3
Approved XSS vulnerabilities: 1474
Approved XSS vulnerabilities on VIP websites: 485

tmall.com vulnerability
Full Disclosure by Buglloc

yandex.ru vulnerability
Full Disclosure by PsychoMantis Twitter: @Psycho_Mantis__
Position in TOP-50 XSS Researchers: 3
Position in TOP-50 VIP XSS Researchers: 2
Approved XSS vulnerabilities: 1193
Approved XSS vulnerabilities on VIP websites: 399

bing.com vulnerability
Full Disclosure by MLT Twitter: @ret2libc
Position in TOP-50 XSS Researchers: 4
Position in TOP-50 VIP XSS Researchers: 15
Approved XSS vulnerabilities: 1066
Approved XSS vulnerabilities on VIP websites: 96

amazon.co.jp vulnerability
Full Disclosure by MLT Twitter: @ret2libc
Position in TOP-50 XSS Researchers: 4
Position in TOP-50 VIP XSS Researchers: 15
Approved XSS vulnerabilities: 1066
Approved XSS vulnerabilities on VIP websites: 96

ask.com vulnerability
Full Disclosure by SymbianSyMoh

microsoft.com vulnerability
Full Disclosure by E1337

imgur.com vulnerability
Full Disclosure by MLT Twitter: @ret2libc
Position in TOP-50 XSS Researchers: 4
Position in TOP-50 VIP XSS Researchers: 15
Approved XSS vulnerabilities: 1066
Approved XSS vulnerabilities on VIP websites: 96

imdb.com vulnerability
Full Disclosure by K3N4NGM5 Twitter: @K3N4NGM5
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 9
Approved XSS vulnerabilities: 1113
Approved XSS vulnerabilities on VIP websites: 456

craigslist.org vulnerability
Full Disclosure by xsscrapy

amazon.de vulnerability
Full Disclosure by PsychoMantis Twitter: @Psycho_Mantis__
Position in TOP-50 XSS Researchers: 3
Position in TOP-50 VIP XSS Researchers: 2
Approved XSS vulnerabilities: 1193
Approved XSS vulnerabilities on VIP websites: 399

xhamster.com vulnerability
Full Disclosure by Nasrul07 Twitter: @nasrulseven
Position in TOP-50 XSS Researchers: 25
Position in TOP-50 VIP XSS Researchers: 12
Approved XSS vulnerabilities: 329
Approved XSS vulnerabilities on VIP websites: 186

bbc.co.uk vulnerability
Full Disclosure by SecBit

amazon.co.uk vulnerability
Full Disclosure by MLT Twitter: @ret2libc
Position in TOP-50 XSS Researchers: 4
Position in TOP-50 VIP XSS Researchers: 15
Approved XSS vulnerabilities: 1066
Approved XSS vulnerabilities on VIP websites: 96

espn.go.com vulnerability
Full Disclosure by Brute Twitter: @brutelogic
Position in TOP-50 XSS Researchers: 2
Position in TOP-50 VIP XSS Researchers: 3
Approved XSS vulnerabilities: 1474
Approved XSS vulnerabilities on VIP websites: 485

pornhub.com vulnerability
Full Disclosure by Buglloc

amazon.cn vulnerability
Full Disclosure by PsychoMantis Twitter: @Psycho_Mantis__
Position in TOP-50 XSS Researchers: 3
Position in TOP-50 VIP XSS Researchers: 2
Approved XSS vulnerabilities: 1193
Approved XSS vulnerabilities on VIP websites: 399

ebay.de vulnerability
Full Disclosure by Tactic4l

TOP XSS Researchers

en4rab
Reported 223 vulnerable websites

ZxX
Reported 44 vulnerable websites

ZxX
Reported 21 vulnerable websites

en4rab
Reported 8 vulnerable websites

V1RUS4
Reported 2 vulnerable websites

V1RUS4
Reported 925 vulnerable websites

en4rab
Reported 804 vulnerable websites

watt
Reported 689 vulnerable websites

Rahuldk
Reported 334 vulnerable websites

Latest Submissions

omgekeerde-nummer-zoeken.nl
XSS by rmsg0d Twitter: @rmsg0d
Position in TOP-50 XSS Researchers: 48
Position in TOP-50 VIP XSS Researchers: 37
Approved XSS vulnerabilities: 56
Approved XSS vulnerabilities on VIP websites: 17
01/08/2015

dr.dk
XSS by K3N4NGM5 Twitter: @K3N4NGM5
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 9
Approved XSS vulnerabilities: 1113
Approved XSS vulnerabilities on VIP websites: 456
01/08/2015

dr.dk
XSS by K3N4NGM5 Twitter: @K3N4NGM5
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 9
Approved XSS vulnerabilities: 1113
Approved XSS vulnerabilities on VIP websites: 456
01/08/2015

dr.dk
XSS by K3N4NGM5 Twitter: @K3N4NGM5
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 9
Approved XSS vulnerabilities: 1113
Approved XSS vulnerabilities on VIP websites: 456
01/08/2015

dr.dk
XSS by K3N4NGM5 Twitter: @K3N4NGM5
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 9
Approved XSS vulnerabilities: 1113
Approved XSS vulnerabilities on VIP websites: 456
01/08/2015

dr.dk
XSS by K3N4NGM5 Twitter: @K3N4NGM5
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 9
Approved XSS vulnerabilities: 1113
Approved XSS vulnerabilities on VIP websites: 456
01/08/2015

dr.dk
XSS by K3N4NGM5 Twitter: @K3N4NGM5
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 9
Approved XSS vulnerabilities: 1113
Approved XSS vulnerabilities on VIP websites: 456
01/08/2015

dr.dk
XSS by K3N4NGM5 Twitter: @K3N4NGM5
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 9
Approved XSS vulnerabilities: 1113
Approved XSS vulnerabilities on VIP websites: 456
01/08/2015

dr.dk
XSS by K3N4NGM5 Twitter: @K3N4NGM5
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 9
Approved XSS vulnerabilities: 1113
Approved XSS vulnerabilities on VIP websites: 456
01/08/2015

dr.dk
XSS by K3N4NGM5 Twitter: @K3N4NGM5
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 9
Approved XSS vulnerabilities: 1113
Approved XSS vulnerabilities on VIP websites: 456
01/08/2015

dr.dk
XSS by K3N4NGM5 Twitter: @K3N4NGM5
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 9
Approved XSS vulnerabilities: 1113
Approved XSS vulnerabilities on VIP websites: 456
01/08/2015

dr.dk
XSS by K3N4NGM5 Twitter: @K3N4NGM5
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 9
Approved XSS vulnerabilities: 1113
Approved XSS vulnerabilities on VIP websites: 456
01/08/2015

dr.dk
XSS by K3N4NGM5 Twitter: @K3N4NGM5
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 9
Approved XSS vulnerabilities: 1113
Approved XSS vulnerabilities on VIP websites: 456
01/08/2015

dr.dk
XSS by K3N4NGM5 Twitter: @K3N4NGM5
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 9
Approved XSS vulnerabilities: 1113
Approved XSS vulnerabilities on VIP websites: 456
01/08/2015

dr.dk
XSS by K3N4NGM5 Twitter: @K3N4NGM5
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 9
Approved XSS vulnerabilities: 1113
Approved XSS vulnerabilities on VIP websites: 456
01/08/2015

dr.dk
XSS by K3N4NGM5 Twitter: @K3N4NGM5
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 9
Approved XSS vulnerabilities: 1113
Approved XSS vulnerabilities on VIP websites: 456
01/08/2015

dr.dk
XSS by K3N4NGM5 Twitter: @K3N4NGM5
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 9
Approved XSS vulnerabilities: 1113
Approved XSS vulnerabilities on VIP websites: 456
01/08/2015

dr.dk
XSS by K3N4NGM5 Twitter: @K3N4NGM5
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 9
Approved XSS vulnerabilities: 1113
Approved XSS vulnerabilities on VIP websites: 456
01/08/2015

dr.dk
XSS by K3N4NGM5 Twitter: @K3N4NGM5
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 9
Approved XSS vulnerabilities: 1113
Approved XSS vulnerabilities on VIP websites: 456
01/08/2015

xakep.ru
XSS by SecBit Twitter: @SecBitNet
Approved XSS vulnerabilities: 9
Approved XSS vulnerabilities on VIP websites: 2
01/08/2015

dr.dk
XSS by K3N4NGM5 Twitter: @K3N4NGM5
Position in TOP-50 XSS Researchers: 13
Position in TOP-50 VIP XSS Researchers: 9
Approved XSS vulnerabilities: 1113
Approved XSS vulnerabilities on VIP websites: 456
01/08/2015

Top Google PR Websites

whitehouse.gov vulnerability
Full Disclosure by sergeym Approved XSS vulnerabilities: 2
Approved XSS vulnerabilities on VIP websites: 1

edx.org vulnerability
Full Disclosure by PsychoMantis Twitter: @Psycho_Mantis__
Position in TOP-50 XSS Researchers: 3
Position in TOP-50 VIP XSS Researchers: 2
Approved XSS vulnerabilities: 1193
Approved XSS vulnerabilities on VIP websites: 399

theeuropeanlibrary.org vulnerability
Full Disclosure by Brute Twitter: @brutelogic
Position in TOP-50 XSS Researchers: 2
Position in TOP-50 VIP XSS Researchers: 3
Approved XSS vulnerabilities: 1474
Approved XSS vulnerabilities on VIP websites: 485

addthis.com vulnerability
Full Disclosure by yarbabin Twitter: @yarbabin
Position in TOP-50 XSS Researchers: 34
Position in TOP-50 VIP XSS Researchers: 11
Approved XSS vulnerabilities: 150
Approved XSS vulnerabilities on VIP websites: 127

topuniversities.com vulnerability
Full Disclosure by Anonymous

sciencedirect.com vulnerability
Full Disclosure by en4rab

mohesr.gov.iq vulnerability
Full Disclosure by R3NW4 Twitter: @R3NW4
Position in TOP-50 XSS Researchers: 14
Position in TOP-50 VIP XSS Researchers: 23
Approved XSS vulnerabilities: 605
Approved XSS vulnerabilities on VIP websites: 43

nsf.gov vulnerability
Full Disclosure by billyzane Twitter: @_billy_zane
Position in TOP-50 XSS Researchers: 12
Position in TOP-50 VIP XSS Researchers: 24
Approved XSS vulnerabilities: 716
Approved XSS vulnerabilities on VIP websites: 58

business.usa.gov vulnerability
Full Disclosure by MLT Twitter: @ret2libc
Position in TOP-50 XSS Researchers: 4
Position in TOP-50 VIP XSS Researchers: 15
Approved XSS vulnerabilities: 1066
Approved XSS vulnerabilities on VIP websites: 96

jstor.org vulnerability
Full Disclosure by crashdemons Twitter: @crashdemons
Position in TOP-50 XSS Researchers: 29
Position in TOP-50 VIP XSS Researchers: 29
Approved XSS vulnerabilities: 197
Approved XSS vulnerabilities on VIP websites: 43

un.org vulnerability
Full Disclosure by Stuxnet Twitter: @_Stuxnet
Position in TOP-50 XSS Researchers: 1
Position in TOP-50 VIP XSS Researchers: 10
Approved XSS vulnerabilities: 1420
Approved XSS vulnerabilities on VIP websites: 108

nws.noaa.gov vulnerability
Full Disclosure by sToRm Position in TOP-50 XSS Researchers: 38
Approved XSS vulnerabilities: 112
Approved XSS vulnerabilities on VIP websites: 6

emeraldinsight.com vulnerability
Full Disclosure by crashdemons Twitter: @crashdemons
Position in TOP-50 XSS Researchers: 29
Position in TOP-50 VIP XSS Researchers: 29
Approved XSS vulnerabilities: 197
Approved XSS vulnerabilities on VIP websites: 43

educationuk.org vulnerability
Full Disclosure by dim0k Twitter: @d1m0ck
Position in TOP-50 XSS Researchers: 8
Position in TOP-50 VIP XSS Researchers: 4
Approved XSS vulnerabilities: 1011
Approved XSS vulnerabilities on VIP websites: 514

culture.gouv.fr vulnerability
Full Disclosure by conslight Twitter: @conslight
Approved XSS vulnerabilities: 1
Approved XSS vulnerabilities on VIP websites: 1

nature.com vulnerability
Full Disclosure by PsychoMantis Twitter: @Psycho_Mantis__
Position in TOP-50 XSS Researchers: 3
Position in TOP-50 VIP XSS Researchers: 2
Approved XSS vulnerabilities: 1193
Approved XSS vulnerabilities on VIP websites: 399

groups.csail.mit.edu vulnerability
Full Disclosure by PsychoMantis Twitter: @Psycho_Mantis__
Position in TOP-50 XSS Researchers: 3
Position in TOP-50 VIP XSS Researchers: 2
Approved XSS vulnerabilities: 1193
Approved XSS vulnerabilities on VIP websites: 399

worldcat.org vulnerability
Full Disclosure by e3xpl0it Twitter: @e3xpl0it
Position in TOP-50 XSS Researchers: 16
Position in TOP-50 VIP XSS Researchers: 8
Approved XSS vulnerabilities: 495
Approved XSS vulnerabilities on VIP websites: 247

cervantesvirtual.com vulnerability
Full Disclosure by Stuxnet Twitter: @_Stuxnet
Position in TOP-50 XSS Researchers: 1
Position in TOP-50 VIP XSS Researchers: 10
Approved XSS vulnerabilities: 1420
Approved XSS vulnerabilities on VIP websites: 108

flickr.com vulnerability
Full Disclosure by e3xpl0it Twitter: @e3xpl0it
Position in TOP-50 XSS Researchers: 16
Position in TOP-50 VIP XSS Researchers: 8
Approved XSS vulnerabilities: 495
Approved XSS vulnerabilities on VIP websites: 247

linkedin.com vulnerability
Full Disclosure by Brute Twitter: @brutelogic
Position in TOP-50 XSS Researchers: 2
Position in TOP-50 VIP XSS Researchers: 3
Approved XSS vulnerabilities: 1474
Approved XSS vulnerabilities on VIP websites: 485

TOP VIP XSS Researchers

en4rab
Reported 144 vulnerable VIP websites

ZxX
Reported 17 vulnerable VIP websites

ZxX
Reported 17 vulnerable VIP websites

en4rab
Reported 144 vulnerable VIP websites

en4rab
Reported 144 vulnerable VIP websites

watt
Reported 138 vulnerable VIP websites

SecBit
Reported 92 vulnerable VIP websites

E1337
Reported 61 vulnerable VIP websites

initbar
Reported 56 vulnerable VIP websites

NewLife705
Reported 46 vulnerable VIP websites

Unpatched VIP Websites

search.vivastreet.co.in
125 unpatched vulnerabilities

jcrew.com
101 unpatched vulnerabilities

madewell.com
93 unpatched vulnerabilities

expatads.com
96 unpatched vulnerabilities

20min.ch
80 unpatched vulnerabilities

americatv.com.pe
80 unpatched vulnerabilities

gob.mx
73 unpatched vulnerabilities

lg.com
148 unpatched vulnerabilities

elcomercio.pe
36 unpatched vulnerabilities

gucci.com
31 unpatched vulnerabilities

fnp.com
29 unpatched vulnerabilities

nba.com
47 unpatched vulnerabilities

freakshare.com
25 unpatched vulnerabilities

opensecrets.org
23 unpatched vulnerabilities

dr.dk
20 unpatched vulnerabilities

ask.com
22 unpatched vulnerabilities

stanford.edu
17 unpatched vulnerabilities

wwe.com
15 unpatched vulnerabilities

tripadvisor.ru
15 unpatched vulnerabilities

edu.cn
16 unpatched vulnerabilities

Making Web Safer

These websites fixed security vulnerabilities thanks to our researchers who reported vulnerabilities via Full Disclosure.

Read how to participate in Open Bug Bounty program for your own and common benefit.

On the 31/07/2015 administration of mcn.org fixed XSS vulnerability reported by security researcher nks0ne. Website mcn.org was vulnerable for 1 day since notification, now the vulnerability is patched.

On the 31/07/2015 administration of lainformacion.com fixed XSS vulnerability reported by security researcher B4rt. Website lainformacion.com was vulnerable for 22 days since notification, now the vulnerability is patched.

On the 31/07/2015 administration of foodnetwork.co.uk fixed XSS vulnerability reported by security researcher algalopez. Website foodnetwork.co.uk was vulnerable for 32 days since notification, now the vulnerability is patched.

On the 31/07/2015 administration of astro7.ru fixed XSS vulnerability reported by security researcher wwwebaudit. Website astro7.ru was vulnerable for 19 days since notification, now the vulnerability is patched.

On the 31/07/2015 administration of wwfbhutan.org.bt fixed XSS vulnerability reported by security researcher Stuxnet. Website wwfbhutan.org.bt was vulnerable for 35 days since notification, now the vulnerability is patched.

On the 31/07/2015 administration of comstockps.org fixed XSS vulnerability reported by security researcher billyzane. Website comstockps.org was vulnerable for 36 days since notification, now the vulnerability is patched.

On the 31/07/2015 administration of panama.ua fixed XSS vulnerability reported by security researcher dim0k. Website panama.ua was vulnerable for 31 days since notification, now the vulnerability is patched.

On the 31/07/2015 administration of cs.bu.edu fixed XSS vulnerability reported by security researcher billyzane. Website cs.bu.edu was vulnerable for 35 days since notification, now the vulnerability is patched.

On the 31/07/2015 administration of hays.es fixed XSS vulnerability reported by security researcher algalopez. Website hays.es was vulnerable for 38 days since notification, now the vulnerability is patched.

On the 31/07/2015 administration of patriarchateofalexandria.com fixed XSS vulnerability reported by security researcher MLT. Website patriarchateofalexandria.com was vulnerable for 27 days since notification, now the vulnerability is patched.