So, you’ve found your first vulnerability. Congratulations! Finding vulnerabilities can be hard. My first piece of advice is to relax and not get ahead of yourself. When you rush, you’ll often make mistakes. Believe me—I know how it feels to get excited and submit a bug only to have your report rejected. To rub salt in the wound, when a company closes the report as invalid, the bug bounty platform reduces your reputation points. This chapter should help you avoid that situation by giving you tips for writing a good bug report.
Read the Policy
Before you submit a vulnerability, make sure to review the program policy. Each ...