Coordinated and Responsible Vulnerability Disclosure Free Bug Bounty Program 438,750 coordinated disclosures
235,443 fixed vulnerabilities
589 bug bounties with 1186 websites
11,904 researchers, 951 honor badges

Privacy and Security

We do not store, process or export any Personally Identifiable Information (PII) as defined in General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679).

To avoid storing any user-related data, we use external authentication via Twitter for everyone on the website. Connection to the website is available via HTTPS only.

Open Bug Bounty does not transfer any vulnerabilities, or vulnerability-related data, to any third-parties.

For privacy reasons, we also keep no logs of any activities of website owners or security researchers.

Terms and Conditions

Open Bug Bounty reserves the right to reject any Open Bug Bounty Program for any reason in its sole discretion.

Open Bug Bounty may terminate any Researcher's or Website Owner's access to and use of the Open Bug Bounty Platform, at Open Bug Bounty's sole discretion, at any time and without notice to the Researcher or Website Owner.

The site may contain links to third-party websites or resources. Open Bug Bounty provides these links only as a convenience and is not responsible for the content, products or services on or available from those websites or resources or links displayed on such websites. Researcher or Website Owner acknowledges sole responsibility for and assumes all risk arising from Researcher's or Website Owner's use of any third-party websites or resources.










  Latest Patched

 22.09.2019 sonovente.com
 22.09.2019 xe.gr
 22.09.2019 paisdelosjuegos.com.ar
 21.09.2019 123test.com
 21.09.2019 productreview.com.au
 21.09.2019 revistagq.com
 20.09.2019 ucertify.com
 20.09.2019 consumer.es
 20.09.2019 sheypoor.com
 20.09.2019 pagalworld.live

  Latest Blog Posts

18.09.2019 by Leon
SSRF | Reading Local Files from DownNotifier server
13.09.2019 by drok3r
Collection of information | Google Hacking and Dorks basic
09.09.2019 by DakkarKey
New and Powerful XSS scan tool - XSpear
05.09.2019 by MiguelSantareno
Wordpress basic auditing
05.09.2019 by MiguelSantareno
Payloads for all type off web attacks

  Recent Recommendations

    20 September, 2019
     pacotix:
Thanks for your finding! You have helped make our site more secure. Thanks for your great collaboration :)
    20 September, 2019
     ChipZ_de:
Gh05tPT has found an XSS vulnerability on one of our pages.

He is very helpful and responded very quickly. I really appreciate it. Thank you very much.
    20 September, 2019
     UUCSIRT:
Thank you for your vulnerability report!
/Hans Liss, Uppsala university
    20 September, 2019
     ashleyhindle:
Thank you so much for highlighting the vulnerability, it really helped!
    19 September, 2019
     YstreamTV:
Thanks for reporting the bug, can you recheck this, hope that is fixed.