Platform update: please use our 
_metamorfosec_ | Security Researcher Profile
Security researcher _metamorfosec_ has already helped fix 4535 vulnerabilities.
Researcher reputation: 640
Real name:
irfan
About me:
Security Researcher, Independent Software Vendor, Self-Published Author.
I use Google, creativity, and luck. No automated tool!
Contact email:
[email protected]
Alternative Contacts:
[email protected]
Award / Bug Bounty I prefer:
I assume that you have (1) respect, (2) negotiation skill, & (3) read and understood openbugbounty.org/about/#p9
I prefer:
Bounty (50-500 USD/EUR, preferably 250)
Recommendation/Free Stuff/etc
Follow me on:
Twitter
Ethics and Rules:
irfan is required to abide by the ethics and rules of the Open Bug Bounty project. If you reasonably believe that rules are not respected, please report this to us.
Recommendations and Acknowledgements | Full List:
TorutheRedFox Toru the Red Fox from Neoalpha:| Thanks for the help with the XSS vulnerability. It was a quick fix. |
29 September, 2022 PSM_DiegoGB Diego from PSM:| Thanks for reporting the XSS problem. We have fixed the vulnerability on our website. |
18 July, 2022 scegliesmarode Wolfgang from SCEGliesmarode:|
Thanks to metamorfosec for reporting the XSS problem on our websites. I could fix the problem in a very short time. Professional communication and quick and detailed responses. Thanks alot! |
12 July, 2022 MrMoney84315336 Jens Weck from Mr-Money Software GmbH:|
Thanks for reporting the XSS problem on our websites. We were able to fix the problem within 3 hours. Great job - thank you |
21 March, 2022 WebtunGrafix Thomas from Webtun Grafix:|
Thank you for noticing the problem of one of our customers and that we were able to resolve it quickly. Thank you! |
11 March, 2022 AirChildVA Matthias Hoffmann from AirChildVA:| We would like to thank metamorfosec for reporting some XSS-Vulnerabilities on our site responsible. We did fix those now. |
19 November, 2021 skyynet_de Ingo from Skyynet:| Thanks for informing me about a general PHP malfunction which could be used to scam people on my website. |
20 October, 2021 AxelZim98609454 Axel from deltacity:| Thank you very much for finding and evaluating a vulnerability on our website. We really appreciate your help! |
6 October, 2021 MMWin Cole from MusicMaster, Inc.:| Very quick response and very helpful! We were able to patch the vulnerability quickly and privately. |
24 September, 2021 meanstest Albin from LegalConsumer:| Thanks for the detailed report and helping us zero in and fix this problem quickly! |
29 April, 2021 bjdean bjdean from Home_co_uk:| Very helpful and responsive to queries, which assisted us both with resolving the reported issues and working with with OpenBugBounty. |
12 April, 2021 Daniel_Gruber Daniel Gruber from EsperoTech:| Thanks for reporting the XSS problem at my websites and the open source software I am developing metamorfosec. |
18 February, 2021 JDudley1123 Joseph from UKSEDS:| Metamorfosec was really helpful in providing detailed information about the problem and how to fix it. Thank you! |
9 February, 2021 cwg Christian from Fluxicon:| Thanks for your detailed and concise report. Professional communication and prompt feedback -- Great job! |
1 February, 2021 Henrik40464087 Henrik from Increo:| Thank you for making us aware of the issues on our websites and providing detailed information of so we could make the required fixes. Very helpful! |
2 October, 2020 Pavlo851 Simone from Pixartprinting:| Irfan has been very helpful on helping our company to patch a vulnerability that was affecting all of our websites. We reach to him and he explained us the vulnerability that has been quickly patched. He has also checked the patch to verify that it was properly set up. Thanks a lot Irfan! |
1 October, 2020 6tematik 6tematik from 6tematik:| Metamorfosec did a great job finding and evualuating our vulnerabilites. Very good communication with the researcher, he was very helping and quick. |
17 August, 2020 philipkujawski P K from WebToMed:| Thank you for reporting the problem and associated details! |
3 August, 2020 Robert_CMI Robert from CMI:| Thank you for reporting the vulnerability on our website, we very much appreciate your quick response and good description of the issue. |
2 June, 2020 Yaha_no Atle from Y aha:| Thank you very much for reporting a problem on our website and help with giving detailed description and explanations on how we could solve it. |
15 April, 2020 vovsoft Vovsoft from Vovsoft:| Thank you very much for finding the bug on our website and your responsible disclosure. Absolutely appreciated. You make the web a better place! |
30 March, 2020 omartanti Omar Tanti from Omar Tanti:| Thank you for reporting the problem and giving detailed explanations on how we would sort it out. |
29 January, 2020 justincarter Justin from Daemon:| Thanks for your clear and concise report and quick communication, a true security professional :) |
1 December, 2019 h0eschi Martin from guideme:| Thank you very much for finding and evaluating a vulnerability on our website. Very professional and detailed communication. |
17 October, 2019 cloudrexx Thomas from Cloudrexx AG:| Thank you very much for making us aware of the issue and providing us a high quality vulnerability report which helped us identify the source of the vulnerability right away. |
11 October, 2019 SimianE Gary from Simian Enterprises:| A comprehensive report helped me quickly patch a vulnerability on a recently deployed client system. I very much appreciate you taking the time to report with a reproducible test case. Many thanks. |
10 October, 2019 tschipie Andreas from Bresser:| Thank you very much for finding and evaluating a vulnerability on our website. Very professional and detailed communication. |
7 October, 2019 KaldaJ Kalda from Kalda:| Thanks for reporting the problem and the vulnerability details. |
26 September, 2019 JensFis25000410 Jens from netdoktor.de:|
Thank you for making us aware of an issue on our site. We really appreciate it. |
9 September, 2019 Marcel93092047 Marcel Ruths from WIKA:|
Thanks very much for the report! We were sure that everything was proteced, but apparently we missed some special places where the escaping wasn't sufficient. It is now fixed. |
19 August, 2019 maxiorel Jan Polzer from Jan Polzer:| Thanks for reporting the problem and the vulnerability details. |
9 August, 2019 johannmw Johann MW from AAK:|
Thank you for finding the vulnerability on our website. It has been taken care of after your recommendations Good work ! |
9 July, 2019 mjimeneza Manu from Joma:| Thanks you very much for the advice about security issue in our site. |
8 July, 2019 perlpunks Tina from perl-community.de:|
Thanks very much for the report! I was pretty sure that everything was safe, but apparently I missed two places where the escaping wasn't sufficient. |
20 May, 2019 LeifTher Leif from Gurusoft AS:| Thank you so much for reporting security vulnerability and for the information needed to fix the issues. |
13 May, 2019 jesuscholiz jesus from Adevinta:|
Thanks for your help! Your findings were accurate, and collaboration with you was easy. It's is glad to see responsible disclosures like yours, that help Companies to fix security bugs. Thanks! |
28 March, 2019 yalwa Jens from Yalwa:| Thanks for making us aware of CSRF vulnerabilities on our websites! They're more secure now. |
1 March, 2019 wirismath Llorenç from Wiris Math:| Thanks for reporting two bugs from our Math Suite Wiris Quizzes and CalcMe. It's now a better product thanks to you! |
5 February, 2019 DomainMOD Greg Chetcuti from DomainMOD:| Thank you so much for reporting this vulnerability in a responsible manner! We were able to find and fix this specific vulnerability, as well as another that was related, and we really appreciate your help in getting this sorted out! |
20 January, 2019 gizmotico Andersen from VegaDesign.net:| Thank you so much for reporting security vulnerability and for the information needed to fix the issues. |
25 October, 2018 jackwolfskin Christine from Jack Wolfskin:| Thank you very much for helping to make our website even more secure. |
22 August, 2018 wirthundhorn Support from dtv.de:| Thank you helping us finding and fixing vulnerabilities. |
22 August, 2018 DanielGuenthe12 Daniel Guenther from Visual Meta GmbH:|
Very fast response and very detailed and helpful reply. The observations were all correct and the the HTML which was provided in the response correctly illustrated the vulnerability. Overall great job and thanks for your efforts! |
17 August, 2018 tarif4you Alex from DAIR Media:|
Thank you very much for a great and in-depth explanation of the issue. This kind of description makes it very easy to identify and fix the problem. Really appreciate your help. |
9 August, 2018 kevinBaseCom Kevin from Online Commerce Ltd:| Thank you foro reporting a security issue with our website and for promptly providing the affected pages. |
26 July, 2018 sgiannandrea2 sgiannandrea from LepidaSpA:| Thank you so much for reporting XSS vulnerabilities on our websites. |
23 June, 2018
12 June, 2018 willy0611 Willy from BOINCstats.com:| Thank you for pointing out a security issue on the BOINCstats website. It helped me find and fix the issue and a few other issues as well. |
8 June, 2018 DriverEasy Driver Easy from Driver Easy:|
Thank you so much for reporting the security issue and bringing this to our attention. We highly appreciate your time and professional skills in helping to make Driver Easy more secure. We're working on the issue and will update with you when we fix it. Thanks again for everything. |
28 May, 2018 karriere_ms Sina from Aschendorff Medien GmbH & Co. KG:| Thank you for reporting a security vulnerability on our websites and for giving us the information needed in order to patch it. We really appreciate your help! |
Honor Badges
Number of Secured Websites
 |
|
|
 |
|
10+ Websites
|
50+ Websites
|
500+ Websites
|
WEB SECURITY VETERAN
1000+ Websites
|
Advanced Security Research
 |
 |
 |
 |
|
WAF Bypasser
|
CSRF Master
30+ Reports
|
AppSec Logic Master
30+ Reports
|
Fastest Fix
Fix in 24 hours
|
Outstanding Achievements
 |
 |
 |
|
|
Secured OBB
|
OBB Advocate
|
Improved OBB
|
Commitment to Remediate and Patch
 |
|
|
|
|
Patch Master
55% Patched
|
Patch Guru
65% Patched
|
Patch Lord
75% Patched
|
Recommendations and Recognition
 |
|
|
|
|
REPUTABLE
10+ Recommends
|
FAMOUS
25+ Recommends
|
GLOBALLY TRUSTED
50+ Recommends
|
Distinguished Blog Author
 |
|
|
|
|
1 Post
|
3 Posts
|
5+ Posts
|
Research Statistics
| Total reports: | 22393 |
| Total reports on VIP sites: | 186 |
| Total patched vulnerabilities: | 4535 |
| Total vulnerabilities on Hold (Open Bug Bounty): | 868 |
| Recommendations received: | 50 |
| Active since: | 30.04.2018 |
Open Bug Bounty Certificate
Reported Vulnerabilities
All Submissions VIP SubmissionsFeatured Submissions
| Domain | Reported | Status | Type |
|---|
|
No posts in blog yet |
09.05.2024 
Please login via Twitter to add a recommendation