Open Bug Bounty Community Forum

Coordinated & Responsible Disclosure
https://www.openbugbounty.org/forum/

What is the correct way to inform the researcher that a vulnerability was fixed

https://www.openbugbounty.org/forum/viewtopic.php?f=5&t=1250

Page 1 of 1

What is the correct way to inform the researcher that a vulnerability was fixed

Posted: Sat Jul 18, 2020 11:34 am
by FedonKadifeli
I have some reports about some minor vulnerabilities on my web site. I fixed them. However, it seems cumbersome to communicate using email with each report submitter that the problem was fixed. Is there a method (a simple tick) to send a message the the reporter that a fixed was applied and a verification is pending?

Re: What is the correct way to inform the researcher that a vulnerability was fixed

Posted: Mon Jul 20, 2020 8:25 am
by x1admin
Our platform automatically check that vulnerability fixed, but if you want do it faster better way contact with researcher

Re: What is the correct way to inform the researcher that a vulnerability was fixed

Posted: Fri Jul 24, 2020 5:59 pm
by FedonKadifeli
Thank you for the answer. Is there any rough time frame on this automatic check?

Re: What is the correct way to inform the researcher that a vulnerability was fixed

Posted: Mon Jul 27, 2020 7:37 am
by x1admin
week
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/