How to react to a non-reproducable vulnerability report

Questions or suggestions about the platform
Post Reply
utrenkner
Posts:2
Joined:Fri Apr 17, 2020 9:17 pm
How to react to a non-reproducable vulnerability report

Post by utrenkner » Fri Apr 24, 2020 9:08 am

Hi,

someone reported a vulnerability on a website I am in charge of. I tried the URL and parameters given in the report and could not reproduce the problem. I even checked the web server logs and found that this specific URL always replied with a 403 status when given the parameters in question. Thus, we absolutely cannot reproduce the vulnerability.

Can we somehow contest the report, have it marked wrong, or deleted?

Thanks
Uwe
Top
User avatar
x1admin
Site Admin
Posts:3102
Joined:Sun Nov 15, 2015 7:04 pm

Re: How to react to a non-reproducable vulnerability report

Post by x1admin » Mon Apr 27, 2020 8:12 am

utrenkner wrote:
Fri Apr 24, 2020 9:08 am
 Hi,

someone reported a vulnerability on a website I am in charge of. I tried the URL and parameters given in the report and could not reproduce the problem. I even checked the web server logs and found that this specific URL always replied with a 403 status when given the parameters in question. Thus, we absolutely cannot reproduce the vulnerability.

Can we somehow contest the report, have it marked wrong, or deleted?

Thanks
Uwe
Please contact with researcher
Top
Post Reply

Return to “OpenBugBounty Platform”

Who is online

Users browsing this forum: No registered users and 2 guests