20VULNERABILITY REPORTS

Image

So, you’ve found your first vulnerability. Congratulations! Finding vulnerabilities can be hard. My first piece of advice is to relax and not get ahead of yourself. When you rush, you’ll often make mistakes. Believe me—I know how it feels to get excited and submit a bug only to have your report rejected. To rub salt in the wound, when a company closes the report as invalid, the bug bounty platform reduces your reputation points. This chapter should help you avoid that situation by giving you tips for writing a good bug report.

Read the Policy

Before you submit a vulnerability, make sure to review the program policy. Each ...

Get Real-World Bug Hunting now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.