Hi, my name is Paulo Choupina.

I find and report vulnerabilities for valuable websites all over the web.

Heres a list of all the important vulnerabilities I've reported so far:

# Date Website Description of bugs found and reported Official recognition Notes Printscreens Technical info
1 9-05-2019 NASA.gov Refleted Cross-Site Scripting in a Nasa.gov website Url + PrintScreen + Video
2 19-03-2018 yahoo.com SQL Injection in Yahoo! Url + PrintScreen
3 10-01-2019 www.olx.pt Refleted Cross-Site Scripting (XSS) in OLX Report - Hall of Fame Url + PrintScreen
4 04-11-2016 mit.edu SQL Injection in Massachusetts Institute of Technology image - document Url
5 29-05-2017 www.harvard.edu SQL Injection in Harvard University image - document Url + PrintScreen
6 29-05-2017 www.harvard.edu New SQL Injection in Harvard University Url + PrintScreen
7 15-07-2013 www.berkeley.edu
3 SQL Injections in University of California – Berkeley, access to mysql root hash image - document Urls
8 21-04-2017 www.cm-lisboa.pt Login credencials leak and XSS in Câmara Municipal de Lisboa image - document Read more (urls + printscreen)
9 21-04-2017 www.cm-porto.pt SQL Injection in Câmara Municipal do Porto image - document Url + PrintScreen + Copy of Report
10 08-07-2019 www.dges.gov.pt 1 Cross Site Scripting in Ministério Geral da Educação Superior image - document Url + PrintScreen
11 09-08-2016 www.drapc.min-agricultura.pt 3 SQL Injections in Ministério da Agricultura do Norte image - document Url + PrintScreen
12 28-02-2018 *.min-saude.pt SQL Injection in a site that belongs to the Ministério da Sáude image - document Url + PrintScreens
13 11-04-2017 www.santandertotta.pt A Reflected Cross-Site Scripting (XSS) in the bank Santander Totta Url + PrintScreen
14 13-03-2018 www.cgd.pt Refleted Cross-Site Scripting (XSS) in Caixa Geral de Depósitos Url + PrintScreen
15 30-01-2018 www.cam.ac.uk SQL Injection in University of Cambridge image - document Url + PrintScreen
16 19-02-2018 www.cam.ac.uk New SQL Injection in University of Cambridge image - document Url + PrintScreen
17 15-02-2018 www.usp.br 3 SQL Injections in Universidade de São Paulo image - document Urls + PrintScreens
18 22-05-2017 www.psd.pt SQL Injection in the official website of Partido Social Democrata image - document Url + PrintScreen
19 08-03-2017 www.uc.pt 13 SQL Injections in Universidade de Coimbra image - document Urls + PrintScreens + Copy of Report
20 27-02-2017 www.up.pt 9 SQL Injections in Universidade do Porto Urls + PrintScreens
21 09-03-2017 www.ua.pt 4 SQL Injections in Universidade de Aveiro image - document Urls + PrintScreens
22 01-02-2018 www.uminho.pt SQL Injection in Universidade do Minho image - document Urls + PrintScreens
23 26-06-2017 www.umd.edu SQL Injection in University of Maryland image - document Url + PrintScreen
24 14-03-2019 www.planonacionaldeleitura.gov.pt SQL Injection in a website that belongs to Ministério da Educação image - document Read more
25 22-05-2017 www.fcporto.pt XSS, Blind SQL Injection and NoSQL Injection in Futebol Clube do Porto Url + PrintScreen
26 22-05-2017 www.inesc-id.pt SQL Injection no Instituto de Engenharia de Sistemas e Computadores image - document Url + PrintScreen
27 01-03-2016 www.umich.edu 3 SQL Injections in University of Michigan image - document Url + PrintScreen
28 16-02-2018 www.globo.com 2 SQL Injections in Portal de Notícias Globo Url + PrintScreen
29 09-02-2018 www.esec.edu.pt SQL Injection in Escola Superior de Educação de Coimbra image - document Url + PrintScreen
30 28-11-2017 www.ipp.pt SQL Injection in Instituto Politécnico do Porto image - document Url + PrintScreen
31 31-01-2018 www.ucp.pt SQL Injection in Universidade Católica Portuguesa Email Printscreen Url + PrintScreen
32 22-03-2017 www.gddc.pt SQL Injection in website that belongs to Procuradoria Geral da República Url + PrintScreen
33 11-10-2016 www.upo.es SQL Injection in University of Pablo de Olavide, Sevilla image - document Url + PrintScreen
34 05-10-2016 www.ucr.ac.cr SQL Injection in University of Costa Rica running as root image - document Url + PrintScreen
35 21-11-2016 www.pyme.go.cr 4 SQL Injections in a website that belongs to the Ministry of Economy Industry and Commerce of Costa Rica image - document Url + PrintScreen
36 22-02-2017 www.cm-mirandela.pt SQL Injection in Câmara Municipal de Mirandela (my hometown) image - document Read more

(you can sort the table by date if you want, just click "Date")

New Project "hack the planet"

ps: Is fair to say that I've reported many more vulnerabilities but they were not in websites worth mention.

.

Personal contact: paulorcchoupina@gmail.com