sandimf
Security Researcher, Developer & Web3 Enthusiast.
Security Researcher, developer & web3 enthusiast.
root@sandi0xf
No time for nonsense.
Interested in AI, Web3, and Security research.
./experience
My Experience
A showcase of projects that I've worked on.
Klinik Gunung Semeru
Full Stack Developer
Kun Humanity System+
Front-end
Aksa Bumi Langit
Front-end
Bug Bounty Discoveries
Critical security vulnerabilities I've discovered and responsibly disclosed through various bug bounty programs.
1
Critical Vulnerability in Forex Trading Platform
Discovered a critical vulnerability allowing transfer from other accounts or demo accounts, and performing withdrawals from other people's accounts.
CriticalReward: $500??Status: Fixed
2
Server-Side Template Injection (SSTI)
Discovered SSTI vulnerability with duplication allowing multiple remote code execution instances through template injection in web application framework.
CriticalStatus: Duplicate
3
XSS Vulnerability in E-commerce Platform
Found stored XSS vulnerability in product review system that could be exploited to inject malicious scripts.
MediumReward: $750Status: Fixed