Danksagung
Der oder die ITInformationstechnik-Sicherheitsforschende wird nach seinen Fähigkeiten beurteilt und nicht nach Alter, Ausbildung, Geschlecht und Herkunft oder gesellschaftlichem Rang. Deshalb zeigen wir diesen Respekt auch öffentlich und erkennen diese Leistung an.

ITInformationstechnik-Sicherheitsforschende (Finderinnen und Finder)
Wir nennen, wenn nichts Anderes gewünscht ist, die Beschreibung der geschlossenen Schwachstelle und den Namen (bzw. den Alias) der Entdeckerin oder des Entdeckers, um so eine gute Zusammenarbeit mit der Bundeswehr auch öffentlich zum Ausdruck zu bringen.
ITInformationstechnik-Sicherheitsforscher | Url | Schwachstellen | Anzahl |
---|---|---|---|
Andreas Barth | Misconfiguration, Information Disclosure | 2 | |
Andrew Hess | Cross Site Scripting | 1 | |
Anthony Roth | Cross Site Scripting | 1 | |
Bastian Wild | Weak HMAC | 1 | |
Benjamin Kunz-Mejri | Information Disclosure, Misconfiguration, MITM, Open Redirect, SQL-Injection, Weak-Crypto, Cross Site Scripting | 38 | |
Boris Baumer | Misconfiguration, RCE | 2 | |
Charalambos Emmanouilidis | Misconfiguration | 1 | |
Damian Strobel | Information Disclosure | 1 | |
David Eckel | CSRF, FPD, Information Disclosure, Open Redirect, Misconfiguration | 9 | |
David Lassig | CRLF, Misconfiguration, Cross Site Scripting | 3 | |
Erik Steltzner | Information Disclosure, Misconfiguration, SSRF | 4 | |
Fabian Mucke | Misconfiguration | 1 | |
Florian Dalwigk | Information Disclosure | 1 | |
Florian Kunushevci | Misconfiguration | 1 | |
Gaurang Maheta | Information Disclosure | 1 | |
Gayatri Patil | Misconfiguration | 1 | |
Hans-Martin Münch | Misconfiguration | 1 | |
Harinder Singh | Misconfiguration | 1 | |
Ilkin Javadov | https://az.linkedin.com/in/ilkin-javadov-630491166 | HTML Injection | 2 |
Ioannis Gkourgkoutas | Information Disclosure, SSRF | 3 | |
Julian Rittweger | Cross Site Scripting | 1 | |
Kasper Karlsson | Open Redirect | 1 | |
Maik Robert | Information Disclosure, CSRF | 2 | |
Marc-Oliver Munz | ATO, Information Disclosure, LFI, Misconfiguration, Open Redirect, SQL-Injection, SSRF, Cross Site Scripting | 35 | |
Matthias Hoffmann | Cross Site Scripting | 1 | |
Matthias Marx | Information Disclosure, Misconfiguration, Cross Site Scripting | 4 | |
Maurizio Ruchay | Misconfiguration | 1 | |
Max Boll | Cross Site Scripting, Open Redirect, CORS | 4 | |
Maximilian Kretschmer | FPD, Information Disclosure, Misconfiguration, RCE, SQL-Injection, Cross Site Scripting | 9 | |
Melvin Hüttl | Missing Poliicy | 1 | |
Mohamed Nabil | Cross Site Scripting | 1 | |
Moritz Samrock | Misconfiguration, Cross Site Scripting | 2 | |
Mouhcine Ben Aomar | Information Disclosure, Misconfiguration, SSRF, Cross Site Scripting | 9 | |
Nicolas Haberkorn | Cross Site Scripting, Information Disclosure | 3 | |
Patrick Hener | Information Disclosure, Misconfiguration, Cross Site Scripting | 8 | |
Patrick Lang | Information Disclosure | 3 | |
Raj Upadhyay | Misconfiguration | 1 | |
Rooney AL-Drawish | Cross Site Scripting | 1 | |
Sebastian Hölzle | Information Disclosure, SSRF | 4 | |
Sebastian Stohr | Cross Site Scripting | 1 | |
Secuninja | Information Disclosure, Misconfiguration, Cross Site Scripting | 4 | |
Sheikh Rishad | Misconfiguration | 1 | |
Simon Neubauer | Information Disclosure | 1 | |
Sock Puppets | DDoSDistributed Denial of Service, SSRF | 2 | |
Thorben Lippke | Misconfiguration, Open Redirect, SSO Bypass | 8 | |
Tobias Schütz | SQL-Injection, SSRF, Cross Site Scripting | 3 | |
Tobias Wolter | Misconfiguration | 1 | |
Tony Nasr | Misconfiguration | 1 | |
TTY Ninja | Misconfiguration | 1 |