Coordinated and Responsible Vulnerability Disclosure Free Bug Bounty Program 266,981 coordinated disclosures
156,737 fixed vulnerabilities
215,035 websites, 17,468 VIP websites
7,174 researchers, 6,915 subscribers

Coding Labs Bug Bounty Program

Coding Labs runs a bug bounty program to ensure the highest security and privacy of its websites. Everyone is eligible to participate in the program subject to the below-mentioned conditions and requirements of Coding Labs

Open Bug Bounty performs triage and verification of the submissions. However, we never intervene to the further process of vulnerability remediation and disclosure between Coding Labs and researchers.

Bug bounty program allow private submissions only.

Bug Bounty Scope

The following websites are within the scope of the program:

staging.liveplatforms.com
jewelry-auctioned.com
coins-auctioned.com
gemrockauctions.com
opalauctions.com

Non-Intrusive Submissions Handling

The following section encompasses submission of the vulnerabilities that do not require intrusive testing as per Open Bug Bounty rules:

- Cross Site Scripting (XSS)
- Open Redirect

- Cross Site Request Forgery (CSRF)
- Improper Access Control

General Requirements:

Contact us via Open Bug Bounty.

Testing Requirements:

RUN TESTS AGAINST staging.liveplatforms.com. This is a staging site which holds sample data only and uses sandboxed emails, payments etc.

Do not interfere with user data or make your presence known by production users.

Possible Awards:

- payments (PayPal)

Community Rating

Provided by security researchers who reported security vulnerabilities via this bug bounty program:

 
Response Time  How quickly researchers get responses to their submissions.
Remediation Time  How quickly reported submissions are fixed.
Cooperation and Respect  How fairly and respectfully researchers are being treated.

  Latest Patched

      radio.de
    Patched on 19.09.2018
      athensmagazine.gr
    Patched on 19.09.2018
      radio.fr
    Patched on 19.09.2018
      radio.net
    Patched on 18.09.2018
      storyblocks.com
    Patched on 18.09.2018
      rubylane.com
    Patched on 18.09.2018
      usp.br
    Patched on 18.09.2018
      epson.eu
    Patched on 18.09.2018
      qnap.com
    Patched on 18.09.2018
      templatemonster.com
    Patched on 18.09.2018

  Recent Recommendations

    18 September, 2018
     iwayAG:
Thanks for the detailed report and the fast ans competent communication.
    18 September, 2018
     WebMore2:
Vielen Dank Armin für die gemeldete Schwachstelle. Wir könnten diese anhand deiner umfangreichen Informationen direkt beheben.
    18 September, 2018
     bencus23:
Thank you very much Rui for informing us about XSS (Cross Site Scripting) problem! You really helped us a lot! Big thanks!
    17 September, 2018
     DCB_Singapore:
I would like to thank Taha for his help to discover the security in our website, without his help we couldn't locate it or even solve it.

Many thanks.
    17 September, 2018
     RajatAr51352684:
thanks a lot for reporting security vulnerability in our website. Great work and very supportive in case of additional questions.