Make web a safer place and become a cybersecurity hero.
In order to report a vulnerability via Open Bug Bounty you should login via your Twitter
Account first
Infosec Institute
Open Bug Bounty mentioned in the
Top 6 Bug Bounty programs of
2022 by the InfoSec Institute
The Hacker News
Open Bug Bounty named among the
Top 5 Bug Bounty programs of 2021
by The Hacker News
All Open Bug Bounty emails are sent only from openbugbounty.org domain being digitally signed. All others are fake. Learn more.
Latest Patched
 30.03.2023 cas.vinhlong.gov.vn
|
| 30.03.2023 ncov.daklak.gov.vn
|
| 30.03.2023 ldld.daklak.gov.vn
|
| 30.03.2023 yenialanya.com
|
| 30.03.2023 webassign.net
|
| 29.03.2023 snapdeal.com
|
| 29.03.2023 webfx.com
|
| 29.03.2023 miracatu.sp.gov.br
|
| 29.03.2023 adm2.pmf.sc.gov.br
|
| 29.03.2023 prc.gov
|
Latest Blog Posts
|
16.01.2023 by itsvarmakollu Turning cookie-based XSS into account takeover |
|
08.07.2022 by kh4sh3i_ Zabbix - SAML SSO Authentication Bypass |
|
08.07.2022 by FR13ND0x7F The Time Machine — Weaponizing WaybackUrls for Recon, BugBounties , OSINT, Sensitive Endpoints and what not |
Recent Recommendations
23 March, 2023
soela_cs| He's a reliable partner in finding and fixing some security issues on our website, and I'm happy to recommend working with him. Thanks for the collaboration! |
22 March, 2023| On behalf of LeaseQuery, I wish to extend our gratitude to 4N_CURZE for reporting a vulnerability found on our website. 4N_CURZE was quick to respond and gladly provided all the information he could in order to help mitigate the risk. His efforts to make the internet a safer place is greatly appreciated! |
17 March, 2023| Huge thanks to Rajesh for pointing out an XSS vulnerability that affected several pages in the website I am developing on my free time. It is much appreciated and the report was very clear! |
