Rank #35 Level 4

unique bugs discovered

reports accepted
100 Accuracy

Vulnerability Types Found

Bug Submissions & total bug count

Hackevent (FirstBlood) Activity

Report Title Event ID Severity Vulnerability Type
Leak PII through the events API FirstBlood v1 CRITICAL Info leak
[COLLAB] Stored XSS on message param through appointment annulation allow admin ATO FirstBlood v1 CRITICAL Stored XSS
[COLLAB] Query appointment with simple ID / Bypass front end restriction FirstBlood v1 High Insecure direct object reference