Coordinated and Responsible Vulnerability Disclosure Free Bug Bounty Program 468,468 coordinated disclosures
250,809 fixed vulnerabilities
616 bug bounties with 1238 websites
12,626 researchers, 975 honor badges

studentas.vdu.lt Bug Bounty Program

studentas.vdu.lt runs a bug bounty program to ensure the highest security and privacy of its websites. Everyone is eligible to participate in the program subject to the below-mentioned conditions and requirements of studentas.vdu.lt

Open Bug Bounty performs triage and verification of the submissions. However, we never intervene to the further process of vulnerability remediation and disclosure between studentas.vdu.lt and researchers.

Bug bounty program allow private submissions only.

Bug Bounty Scope

The following websites are within the scope of the program:

*.studentas.vdu.lt

Non-Intrusive Submissions Handling

The following section encompasses submission of the vulnerabilities that do not require intrusive testing as per Open Bug Bounty rules:

- Cross Site Scripting (XSS)
- Open Redirect

- Cross Site Request Forgery (CSRF)
- Improper Access Control

General Requirements:

General vulnerability check

Testing Requirements:

no special restrictions.

Possible Awards:

recommendation in researcher's profile, mention in a Hall of Fame

Community Rating

Provided by security researchers who reported security vulnerabilities via this bug bounty program:

 
Response Time  How quickly researchers get responses to their submissions.
Remediation Time  How quickly reported submissions are fixed.
Cooperation and Respect  How fairly and respectfully researchers are being treated.

Researcher's comments

    17 August, 2019
    Esss_ayy:
Kindly share email address to report other type of vulnerabilities .
    16 August, 2019
    meltdown:
regards
The scope is only over the URL "studentas.vdu.lt" or you can also enter "sso.vdu.lt"

  Latest Patched

 16.11.2019 visionias.in
 16.11.2019 degruyter.com
 16.11.2019 glami.cz
 16.11.2019 fcpeuro.com
 16.11.2019 cbrfc.noaa.gov
 16.11.2019 nuskin.com
 16.11.2019 psc.utah.gov
 16.11.2019 instahu.com
 15.11.2019 startsiden.no
 15.11.2019 altibbi.com

  Latest Blog Posts

30.10.2019 by Nep_1337_1998
Denial of Service vulnerability in script-loader.php (CVE-2018-6389)
17.10.2019 by 0xrocky
Stored XSS
17.10.2019 by geeknik
The "S" in IOT is for Security
16.10.2019 by Fadavvi
Best XSS Vectors
01.10.2019 by Renzi25031469
#Security 100%

  Recent Recommendations

    15 November, 2019
     hyperext_uk:
@Cyberanteater very kindly alerted us about a git vunerability on one of our websites which we promptly fixed. This also prompted us to audit all our other projects.

Much appreciated.
Steve
    15 November, 2019
     dalitso47152461:
Thanks for bringing the issue to our attention. The info you provided was very helpful and instrumental in getting a fix in place.
    14 November, 2019
     cloudrexx:
Thank you very much for making us aware of the issue and providing us a high quality vulnerability report which helped us identify the source of the vulnerability right away.
    14 November, 2019
     pofope1:
Thanks for your report. Please check we have patched it. :)
    13 November, 2019
     ContatoFAME:
Thanks for the details about the failure found on one of our sites.