Collaborate Disseminate
A bounty hunter reached out to us to give us information about a security vulnerability in our company’s information systems. In our estimation, the risk of exploitation for this vulnerability is rather small, but nevertheless, we apprecia… Continue reading Anonymous unasked bounty hunter wants bounty for found issues
I have a website: https://bugbounty.com/test/"injection inside js", but " is escaped with \ and I’m trying to inject </script><script>alert() but https://bugbounty.com/test/</script><script>alert() re… Continue reading XSS bypass in url
I found a vulnerability in WhatsApp which allows the attacker to temporarily lock you out of your account (which results among other things in a loss of productivity e.g. stemming from a loss of the chat history).
I’ve reported it via Face… Continue reading Facebook rejects a valid DoS’able vulnerability in WhatsApp – what should I do?
I noticed that, while browsing through many bug bounty and vulnerability disclosure programs, they don’t accept issues that are related to TLS/SSL, which includes expired security certificates.
Why are companies so unwilling to accept expi… Continue reading Why do many companies reject expired SSL certificates as bugs in bug bounties?
QNAP Systems, the Taiwanese manufacturer of popular NAS and other on-premise storage, smart networking and video devices, has launched a bug bounty program with rewards of up to US $20,000. QNAP’s NAS devices, in particular, have been getting hit… Continue reading QNAP starts bug bounty program with rewards up to $20,000
New QNAP Systems bug bounty program covers vulnerabilities in applications, cloud services, and operating systems.
The post QNAP Offering $20,000 Rewards via New Bug Bounty Program appeared first on SecurityWeek.
Continue reading QNAP Offering $20,000 Rewards via New Bug Bounty Program
Google rewarded over 700 researchers in 2022 for contributions to its bug bounty program, with the highest single payout at $605,000.
The post Google Paid Out $12 Million via Bug Bounty Programs in 2022 appeared first on SecurityWeek.
Continue reading Google Paid Out $12 Million via Bug Bounty Programs in 2022
By Waqas
Crypto bug bounty programs have become essential as the number of blockchain platforms grows exponentially, making it increasingly difficult for developers to keep up with all the necessary security protocols on their own.
This is a post from … Continue reading 6 of the Best Crypto Bug Bounty Programs
By Habiba Rashid
The US military seeks public help in securing its critical cyber infrastructure with “Hack the Pentagon 3.0” bug bounty program.
This is a post from HackRead.com Read the original post: Hack the Pentagon 3.0: Groundbreaking Bug Bounty … Continue reading Hack the Pentagon 3.0: Groundbreaking Bug Bounty Program Is Back
I discovered a RCE "Remote Code Execution" vulnerability in Microsoft Windows 11 and unfortunately, Microsoft fixed it and did not give me the reward. The severity of the vulnerability is critical. I hope someone can help me.
… Continue reading Getting a bounty for RCE in Microsoft Windows 11 [closed]