johandu97 has reached Level 4 with 75+ unique vulnerabilities discovered and they have proven to us that they understand web application vulnerabilities and how to discover them. If you run a bug bounty/vulnerability disclosure program and you are looking for an active, professional researcher, we recommend considering this user
Report Title | Event ID | Severity | Vulnerability Type |
---|---|---|---|
Stored XSS on the /manageappointment.php endpoint when canceling an appointment | FirstBlood v2 | High | Stored XSS |
Reflected XSS on the /login.php endpoint with the goto vulnerable parameter | FirstBlood v2 | Medium | Reflective XSS |
Reflected XSS on the /register.php endpoint with the ref vulnerable parameter | FirstBlood v2 | Medium | Reflective XSS |