Coordinated and Responsible Vulnerability Disclosure Free Bug Bounty Program 391,505 coordinated disclosures
222,535 fixed vulnerabilities
538 bug bounties with 1055 websites
10,784 researchers, 919 honor badges

Gioxx's OpenBugBounty Bug Bounty Program

Gioxx's OpenBugBounty runs a bug bounty program to ensure the highest security and privacy of its websites. Everyone is eligible to participate in the program subject to the below-mentioned conditions and requirements of Gioxx's OpenBugBounty

Open Bug Bounty performs triage and verification of the submissions. However, we never intervene to the further process of vulnerability remediation and disclosure between Gioxx's OpenBugBounty and researchers.

Bug bounty program allow all submissions.

Bug Bounty Scope

The following websites are within the scope of the program:

*.gioxx.org

Non-Intrusive Submissions Handling

The following section encompasses submission of the vulnerabilities that do not require intrusive testing as per Open Bug Bounty rules:

- Cross Site Scripting (XSS)
- Open Redirect

- Cross Site Request Forgery (CSRF)
- Improper Access Control

General Requirements:

No general requirements

Testing Requirements:

Please do not use vulnerability scanners.

Possible Awards:

Acknowledgments on https://gioxx.org/about/acknowledgments, @gioxx (Twitter) and Gioxx's Wall Facebook Page.

Community Rating

Provided by security researchers who reported security vulnerabilities via this bug bounty program:

 
Response Time  How quickly researchers get responses to their submissions.
Remediation Time  How quickly reported submissions are fixed.
Cooperation and Respect  How fairly and respectfully researchers are being treated.

Researcher's comments

No comments so far.

  Latest Patched

 20.07.2019 peopleenespanol.com
 20.07.2019 southernliving.com
 20.07.2019 realsimple.com
 20.07.2019 vpnmentor.com
 19.07.2019 filmaffinity.com
 19.07.2019 leleketang.com
 19.07.2019 ceskatelevize.cz
 19.07.2019 writing.com
 19.07.2019 manilatimes.net
 19.07.2019 ariva.de

  Latest Blog Posts

12.06.2019 by Open Bug Bounty
Open Bug Bounty pursues a steady growth in 2019 with over 212,148 fixed vulnerabilities
27.05.2019 by fakessh
bing openredirect
20.05.2019 by fakessh
Hitachi Incident Response Team (HIRT)
11.05.2019 by MAS00712
Footprinting and Reconnaissance with DIRB Tool (For Security Researcher and Bug Bounty Hunters)
01.05.2019 by Renzi25031469
1000's of default passwords on http://open-sez.me

  Recent Recommendations

    19 July, 2019
     nitrc_info:
Thank you for the report with proof of concept!
    19 July, 2019
     Geddo2k:
Thanks abdelhak for the xss- and CSRF-hint on our website! appreciate it.
    19 July, 2019
     AndyTrier:
He found the next bug on our Website! THANK YOU
Professional help, great work!
    19 July, 2019
     enejcz:
warbid found xss vulnerability on our website. We have fixed the issue. Thank you for your report!
    19 July, 2019
     Sky_bugbounty:
[Note: As this company doesn't have Twitter, I report their recommendation by myself]

Nous avons bien pris connaissance de votre message et nous vous remercions de l’attention que vous avez eue pour notre site !

Notre équipe technique travaille actuellement sur le problème que vous avez mis en avant.

Camille Fernandez