Coordinated and Responsible Vulnerability Disclosure Free Bug Bounty Program 367,341 coordinated disclosures
205,242 fixed vulnerabilities
501 bug bounties with 997 websites
9,989 researchers, 882 honor badges

  Please, login via Twitter first




Coordinated and Responsible Vulnerability Disclosure

Here you can submit a vulnerability via the Open Bug Bounty following coordinated and responsible disclosure:

Use only non-intrusive testing techniques that will not affect confidentiality, integrity or availability of the website, any related data or infrastructure.
Notify website owner in a prompt and reliable manner to help fixing the vulnerability, follow ISO 29147 guidelines of responsible disclosure.
Avoid reporting any vulnerabilities that will unlikely be fixed by the website owner.
Follow technical submission guidelines, otherwise submission may be declined.

Vulnerability Details

Vulnerability type:
* XSS URL:
POST data: appication/x-www-form-urlencoded
POST data example:


key1=value1&key2=value2
           
Cookies:
* CMS name:

Notifications

ISO 29147 Recommend Notification:
Notify subscribers:
A notification without technical details can be also sent to a specific security email you have for this submission. Please try to find the most appropriate one.
Send notification via twitter:
Automatic Disclosure:
 


  Latest Patched

 19.05.2019 ironman.com
 19.05.2019 tipsport.cz
 19.05.2019 thomasnet.com
 19.05.2019 unimed.coop.br
 19.05.2019 richersounds.com
 19.05.2019 paperpk.com
 19.05.2019 daraz.pk
 19.05.2019 compraensanjuan.com
 18.05.2019 openclipart.org
 18.05.2019 2mycouchtuner.one

  Latest Blog Posts

11.05.2019 by MAS00712
Footprinting and Reconnaissance with DIRB Tool (For Security Researcher and Bug Bounty Hunters)
01.05.2019 by Renzi25031469
1000's of default passwords on http://open-sez.me
01.05.2019 by Renzi25031469
Fuxploider - @almandin
01.05.2019 by Renzi25031469
Sysadminotaur
29.04.2019 by Open Bug Bounty
Enhanced ratings for bug bounties at Open Bug Bounty

  Recent Recommendations

    17 May, 2019
     derbarkeeper:
Thank you for reporting XSS vulnerability. Great work!
    17 May, 2019
     derbarkeeper:
Thanks k0t for reporting XSS vulnerability on our website!
    16 May, 2019
     randomthing4ev1:
Thanks again for telling us of a XSS vulnerability in a timely and responsible manner, so we could get it fixed.
    16 May, 2019
     biblegateway:
This person's report was accurate and allowed us to implement a fix quickly. Thank you!
    16 May, 2019
     Admeus:
Gh05tPT found a XSS vulnerability on our website, which was promptly resolve with his help. Really good communication and sympathy. Thanks