Coordinated and Responsible Vulnerability Disclosure Free Bug Bounty Program 307,675 coordinated disclosures
179,394 fixed vulnerabilities
336 bug bounties with 732 websites
8,455 researchers

Privacy and Security

We do not store, process or export any Personally Identifiable Information (PII) as defined in General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679).

To avoid storing any user-related data, we use external authentication via Twitter for everyone on the website. Connection to the website is available via HTTPS only.

Open Bug Bounty does not transfer any vulnerabilities, or vulnerability-related data, to any third-parties.

For privacy reasons, we also keep no logs of any activities of website owners or security researchers.

Terms and Conditions

Open Bug Bounty reserves the right to reject any Open Bug Bounty Program for any reason in its sole discretion.

Open Bug Bounty may terminate any Researcher's or Website Owner's access to and use of the Open Bug Bounty Platform, at Open Bug Bounty's sole discretion, at any time and without notice to the Researcher or Website Owner.

The site may contain links to third-party websites or resources. Open Bug Bounty provides these links only as a convenience and is not responsible for the content, products or services on or available from those websites or resources or links displayed on such websites. Researcher or Website Owner acknowledges sole responsibility for and assumes all risk arising from Researcher's or Website Owner's use of any third-party websites or resources.










  Latest Patched

      paginebianche.it
    Patched on 20.01.2019
      softstribe.com
    Patched on 20.01.2019
      proprofs.com
    Patched on 20.01.2019
      casetify.com
    Patched on 19.01.2019
      archinect.com
    Patched on 19.01.2019
      bloomberg.com
    Patched on 19.01.2019
      bb.com.br
    Patched on 19.01.2019
      fael.edu.br
    Patched on 18.01.2019
      tsheets.com
    Patched on 18.01.2019
      alamy.com
    Patched on 17.01.2019

  Recent Recommendations

    21 January, 2019
     Grnland3:
Guten Tag Armin

Besten Dank für Ihre Mail und die Dokumentation der eruierten XXS-Schwachstelle. Wir sind in einem laufenden Prozess daran Schwachstellen, wie die von Ihnen Identifizierte, zu eruieren und zu beheben.
Die Sensibilisierung der Entwickler zur Verhinderung von Sicherheitslücken bedarf offenbar weiterer Schritte, für Ihr professionelles Vorgehen und den Hinweis möchten wir uns bedanken.

Grüsse
Eisbär
    21 January, 2019
     viewbug:
Awesome recommendations to help the site have less vulnerabilities. Thank you again for your support!
    21 January, 2019
     Grnland3:
Guten Tag Armin
Besten Dank für Ihre Mail und die Dokumentation der eruierten XXS-Schwachstelle. Wir sind in einem laufenden Prozess daran Schwachstellen, wie die von Ihnen Identifizierte, zu eruieren und zu beheben.
Die Sensibilisierung der Entwickler zur Verhinderung von Sicherheitslücken bedarf offenbar weiterer Schritte, für Ihr professionelles Vorgehen und den Hinweis möchten wir uns bedanken.

Icebear
    20 January, 2019
     gizmotico:
Thank you so much for reporting security vulnerability and for the information needed to fix the issues.
    20 January, 2019
     fparisot:
Felipe found an XSS security flaw on my website's landing page. He kindly told which one was affected and I could fix it. I do not run a big company (self employed) and cannot afford huge paypal rewards (at least for now, it hope this will change ;) ). If he finds something wrong on your website and you can reward him, just do it because he truly deserves it! Highly recommended.
Thanks a lot man!