security-policy

philip.media

Responsible vulnerability disclosure acknowledgements

philip.media would like to thank the following security researchers, who have reported vulnerabilities to us as part of a Responsible Disclosure Procedure:

2022

Name of Researcher Vulnerability Conformity Fixed CVE Risk level
Parshwa Bhavsar Unauthorized REST-API Access (WP) False True CVE-2017-5487

2021

Name of Researcher Vulnerability Conformity Fixed CVE Risk level
Intern (pb) Log4Shell True True CVE-2021-45105
Gaurang Maheta OpenSSH Username Enumeration None True  
Sivan Mujtaba XSS Vulnerability True True  
ykl XSS Vulnerability True True  
SECFAULT iFrame injection False True  

2020

Name of Researcher Vulnerability Conformity Fixed Risk level
No name given Database leakage True True