Report a Vulnerability
Submit, help fixing, get kudos.
Start a Bug Bounty
Run your bounty program for free.
553,570 coordinated disclosures
355,668 fixed vulnerabilities
837 bug bounties with 1,619 websites
17,252 researchers, 1151 honor badges

UCI - ICS Bug Bounty Program

UCI - ICS runs a bug bounty program to ensure the highest security and privacy of its websites. Everyone is eligible to participate in the program subject to the below-mentioned conditions and requirements of UCI - ICS

Open Bug Bounty performs triage and verification of the submissions. However, we never intervene to the further process of vulnerability remediation and disclosure between UCI - ICS and researchers.

Bug bounty program allow private and public submissions.

Bug Bounty Scope

The following websites are within the scope of the program:

*.ics.uci.edu

Non-Intrusive Submissions Handling

The following section encompasses submission of the vulnerabilities that do not require intrusive testing as per Open Bug Bounty rules:

- Cross Site Scripting (XSS)
- Open Redirect

- Cross Site Request Forgery (CSRF)
- Improper Access Control

General Requirements:

Please help us secure our site

Testing Requirements:

We will ban access if your tests are too intrusive.

Possible Awards:

Certificate of Appreciation / Hall of Frame/ Bug
Bounty/Recommendations

Community Rating

Provided by security researchers who reported security vulnerabilities via this bug bounty program:

 
Response Time  How quickly researchers get responses to their submissions.
Remediation Time  How quickly reported submissions are fixed.
Cooperation and Respect  How fairly and respectfully researchers are being treated.

Researcher's comments

    4 August, 2020
    Tanisha83654103:
website version is out date which can cause vulnerabilty. request you to update the version

  Latest Patched

 05.08.2020 fau.edu
 05.08.2020 rta.ae
 05.08.2020 thisismoney.co.uk
 05.08.2020 bayt.com
 05.08.2020 satkurier.pl
 05.08.2020 mysurvey.com
 05.08.2020 mustit.co.kr
 04.08.2020 hardware.fr
 04.08.2020 gamemeca.com
 04.08.2020 affinity.com

  Latest Blog Posts

24.06.2020 by Gkexamquiz
How to Find Contacts To Report Bugs & Security Vulnerabilities | Bug Bounty Tutorials 2020
24.06.2020 by 0xcrypto
Improper Access Control - Generic: Unrestricted access to any "connected pack" on docs in coda.io
04.04.2020 by Rando02355205
(Alibaba) message.alibaba.com [IDOR] - [Bug Bounty]
12.03.2020 by Rando02355205
(Paypal) www.paypal.com [CSP High Level] - [XSS Reflected] - [Bug Bounty] - [Write Up]
08.03.2020 by CybeReports
JDECO.net XSS Vulnerability| CybeReports

  Recent Recommendations

    6 August, 2020
     Robert_CMI:
Thank you Rajesh for reporting vulnerabilities on our website, your quick and detailed response was very valuable to us!
    6 August, 2020
     StefanCink:
Thanks to @singhnitesh21 we were able to close a vulnerability on our website asap. Thank you!
    5 August, 2020
     kkb5mobile:
Thank you for pointing out the vulnerability.
Thanks to you, I was able to respond safely.
    5 August, 2020
     h_ono:
Great work, thanks for finding a bug and kindly reporting it.
    5 August, 2020
     PGSOC1:
Numan has responsibly reported a CSRF vulnerability on our website. We credit Numan for responsible disclosure.