Open Bug Bounty selected among the
Top 5 Bug Bounty programs to watch
by The Hacker News

All Open Bug Bounty emails are sent only from openbugbounty.org domain being digitally signed. All others are fake. Learn more.
For security researchers
Report a Vulnerability
Submit, help fixing, get kudos.
For website owners
Start a Bug Bounty
Run your bounty program for free.
1,293,094 coordinated disclosures
922,574 fixed vulnerabilities
1,622 bug bounty programs, 3,204 websites
29,144 researchers, 1,451 honor badges

Coordinated Disclosure Vulnerability

This vulnerability was reported via our coordinated disclosure Open Bug Bounty program and patched.

  Latest Patched

 13.08.2022 hotpot.ai
 13.08.2022 asicentral.com
 13.08.2022 acoop.arkansas.gov
 13.08.2022 open.edu
 13.08.2022 lilahelp.me
 13.08.2022 cnci.edu.mx
 12.08.2022 sunlight.net
 12.08.2022 wirksworth.gov.uk
 12.08.2022 luzerna.sc.gov.br
 12.08.2022 readwhere.com

  Latest Blog Posts

08.07.2022 by 4websecurity
CVE 2022-29455 is still affecting millions of Wordpress sites
08.07.2022 by kh4sh3i_
Zabbix - SAML SSO Authentication Bypass
08.07.2022 by FR13ND0x7F
The Time Machine — Weaponizing WaybackUrls for Recon, BugBounties , OSINT, Sensitive Endpoints and what not
15.02.2022 by sepkatpro
Ultimate XSS Polyglot
11.11.2021 by mistry4592
The Most used Chrome Extensions are Used For Penetration Testing.

  Recent Recommendations

@luiztools     5 August, 2022
    Twitter luiztools:
Confirmo que Jonathan Fonseca (bypikeno) encontrou uma vulnerabilidade XSS em meu site, a qual está sendo providenciada a correção neste momento. Agradeço pelo aviso e disposição em ajudar.
@ThomasDBending     31 July, 2022
    Twitter ThomasDBending:
Thank you for finding an XSS vulnerability in my website.
@ThomasDBending     31 July, 2022
    Twitter ThomasDBending:
Thank you for finding an XSS vulnerability in my website.
@MrMoney84315336     26 July, 2022
    Twitter MrMoney84315336:
Thank you to @Legacy_Defender for reporting and providing prompt and courteous details on our website, leading to a quick and pain free resolution. Keep up the good work.
@MrMoney84315336     26 July, 2022
    Twitter MrMoney84315336:
Thanks for reporting the XSS problem on our websites.
We were able to fix the problem within 3 hours.
Great job - thank you