U gebruikt een verouderde browser en daarom werkt de website niet optimaal voor u. Om alle functionaliteiten te kunnen gebruiken, raden we u aan om over te stappen naar een andere browser.

This page contains the Hall of Fame with a mostly up-to-date list of persons who have reported security vulnerabilities to us. It is the result of our responsible disclosure policy.

Reported and resolved vulnerabilities

September 2020

API key leakage discovered by IeCyberzilla

July 2020

Vulnerability in Cisco ASA used by Stedin discovered by D-d-W

April 2020

Disclosure of server technology and version discovered by MZ-ZeroCPT

December 2019

Subdomain takeover possible due to a misconfigured CNAME record discovered by dominiquevd 

Subdomain takeover possible due to a misconfigured CNAME record discovered by jubobs

October 2019

Error page contains SQL error information discovered by D4rk0

September 2019

Usernames are findable through an unrelated search form discovered by D4rk0

August 2019

Unsecure configuration on a website discovered by an anonymous person

Data enumeration possible based on limited information discovered by an anonymous person

February 2019

Server information leakage discovered by sreeappsec

September 2018

Domain spoofing vulnerability on multiple websites discovered by SecguruOTX

Misconfigured SPF record discovered by SecguruOTX

January 2018

Captcha is not implemented on a form discovered by an anonymous person

November 2017

XSS vulnerability discovered by rootaccess

Publicly accessible website which should be restricted to internal users only discovered by rootaccess

October 2017

DNS misconfiguration discovered by an anonymous person

August 2017

Exposure of sensitive information on joulz.nl discovered by an anonymous person

July 2017

Unsafe SSL configuration discoverd by warringaa

March 2017

Missing headers which may lead to XSS discovered by an anonymous person