API for CERTs - OpenBugBounty.org

API for CERTs

To promote coordinated and responsible disclosure enabled by Open Bug Bounty non-profit project, we provide national and private (subject to qualification) CERTs with a free API to search our databases and get alerts on new submissions affecting any domain.

We do not provide any vulnerability details (that belong to the security researchers) unless they are publicly disclosed via the API.

Upon request, we can also try to put your in contact with a researcher to facilitate coordinate disclosure and vulnerability remediation.

Request API access

Latest Patched

20.02.2019 ioffer.com

20.02.2019 ucanr.edu

20.02.2019 lbc.co.uk

20.02.2019 forever21.com

20.02.2019 twistys.com

20.02.2019 trackwrestling.com

20.02.2019 20minutos.es

19.02.2019 skyeng.ru

19.02.2019 ubisoft.com

19.02.2019 nehandaradio.com

Latest Blog Posts

20.02.2019 by drok3r
ModSecurity - ByPass XSS

15.02.2019 by ismailtsdln
Adobe Israel Website XSS Vulnerability

07.02.2019 by aye_robot
Reporting CSRF via Openbugbounty

06.02.2019 by Open Bug Bounty
Launching Open Bug Bounty Blog and new platform features

Recent Recommendations

20 February, 2019

Thank you for pointing out the XSS vulnerability in our site. We appreciate your assistance. Thank you!

20 February, 2019

Thank you for helping improve security at Jisc by reporting a vulnerability to us according to our vulnerability disclosure policy.

20 February, 2019

Quick and accurate communication. Wonderful to work with.

18 February, 2019

thanks for reporting again

17 February, 2019

Thank you for pointing out the XSS vulnerability in our site. We appreciate your work and quick response. Thank you!!

Making Web a Safer Place

Coordinated & Responsible Disclosure

Based on ISO 29147 Guidelines

Terms & Privacy
2018 © OpenBugBounty