It makes sense why public websites which do not have a bug bounty on the OBB website are limited to 1 report every 24 hours, but not this. The people who sign up on your website to host a Bug Bounty expect to receive reports.A vulnerability on this domain has just been reported by another researcher. Please try again later. To prevent spam and mass submissions of similar XSS on the same website, a vulnerability on one website can be reported only 24 hours after submission by another researcher.
24 hour limit on private bug bounties?
What is the reasoning behind limiting private bug bounties hosted on OBB to receiving 1 report every 24 hours? No other platform does that and I feel like you're providing a dis-service to the people using your platform to receive security reports.
Who is online
Users browsing this forum: No registered users and 2 guests