| # | TARGET / ASSET | VULNERABILITY | TYPE | SEVERITY |
|---|---|---|---|---|
| 1 | ![]() ONGC CERT-In Disclosure |
Broken Access Control |
WEB APP | CRITICAL |
| 2 |
![]() ONGC
CERT-In Disclosure
CERT-In
✓ ~3,000 Employee Records Secured
|
Sensitive Data Exposure |
WEB APP | CRITICAL |
| 3 | ![]() TRON DAO HackerOne |
Cryptographic Weakness Weak Pseudo-Random Number Generator (PRNG) |
WEB APP | CRITICAL |
| 4 |
![]() Samsung
VDP
Google
“High quality research”
|
Authentication Bypass Incorrect Authorization · Android 16 |
MOBILE DEVICE | HIGH |
| 5 | ![]() ONGC CERT-In Disclosure |
Security Misconfiguration |
WEB APP | HIGH |
| 6 | ![]() TRON DAO HackerOne |
Cross-Site Request Forgery (CSRF) |
WEB APP | HIGH |
| 7 | ![]() Pet Pooja VDP |
Infrastructure Security Misconfiguration WAF Bypass |
WEBSITE | HIGH |
| 8 | ![]() The Fork Bugcrowd |
Server Security Misconfiguration |
APK | INFO |
| 9 |
![]() Meta
Bug Bounty
WhatsApp
Locked Chats
|
Authentication Flow Inconsistency |
DESKTOP APP | PENDING |
| 10 | ![]() Foundation VDP |
Security Misconfiguration |
WEB APP | PENDING |
| 11 | 🔒 [ UNDISCLOSED ] Private Program · NDA |
[ CONFIDENTIAL ] Vulnerability details withheld — active NDA in effect |
REDACTED | PENDING |
| 12 | 🔒 [ UNDISCLOSED ] Private Program · NDA |
[ CONFIDENTIAL ] Cannot disclose — responsible disclosure timeline active |
REDACTED | PENDING |
| COMPETITION | YEAR | MVP RANK | PARTICIPANTS | STATUS |
|---|---|---|---|---|
| NFSU CTF - National Forensic Sciences University | 2023 | #5 | 700+ | ● TOP 10 MVP |
| NFSU CTF - National Forensic Sciences University | 2022 | #7 | 500+ | ● TOP 10 MVP |