Report a Vulnerability
Submit, help fixing, get kudos.
Start a Bug Bounty
Run your bounty program for free.
610,102 coordinated disclosures
392,654 fixed vulnerabilities
927 bug bounties with 1,858 websites
18,784 researchers, 1198 honor badges

Coordinated Disclosure Vulnerability

This vulnerability was reported via our coordinated disclosure Open Bug Bounty program and patched.

  Latest Patched

 28.10.2020 plos.org
 28.10.2020 audiusa.com
 28.10.2020 um.es
 28.10.2020 bpjs-kesehatan.go.id
 28.10.2020 dooda.me
 28.10.2020 inews.id
 28.10.2020 faz.net
 27.10.2020 dek-d.com
 27.10.2020 dict.cc
 27.10.2020 massey.ac.nz

  Latest Blog Posts

26.10.2020 by _r00t1ng_
Bypass Addslashes using Multibyte Character
26.10.2020 by _r00t1ng_
One Payload to Inject them all - MultiQuery Injection
26.10.2020 by _r00t1ng_
Routed SQL Injection
26.10.2020 by _r00t1ng_
DIOS the SQL Injectors Weapon
26.10.2020 by p4c3n0g3
How to find AngularJS XSS

  Recent Recommendations

@adridder     28 October, 2020
    Twitter adridder:
Thank you for your help with this XSS vulnerability on our site. We appreciate the responsible reporting via openbugbounty.
@gaborvitez     28 October, 2020
    Twitter gaborvitez:
Ajaysen R found a reflected cross site scripting bug in one of our cgi scripts, this way he helped us improve the security of our website. He was really fast to react, working with him was really a pleasure. We are grateful for the issues he made us aware of.
@TConfetti     28 October, 2020
    Twitter TConfetti:
Vighnesh Gupta was responsive and professional in helping us remediate a bug on our website. Thank you for your insight, Vighnesh.
@notedekd     28 October, 2020
    Twitter notedekd:
Thank for the detail reporting.
@Jobe1986     28 October, 2020
    Twitter Jobe1986:
Thank you for your efforts and reporting the XSS vulnerability you found on my website.