Vulnerability Disclosure Program (VDP)

VDPs are meant for responsibly reporting vulnerabilities you encounter — not for actively hunting for fame or reputation. Even if you're just starting out, consider focusing on rewarded bug bounty programs instead.

/engagements/nfl-vdp-pro

BugcrowdView on Bugcrowd

RawAI Enhanced

In Scope

Out of Scope

In-Scope Assets (6)

Asset	Category	Bounty	Quick Links
Any host verified to be owned by NFL Enterprises LLC	URL	No	-
https://*.nfl.com/	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
https://apps.apple.com/us/app/nfl-events/id1494588053	IOS	No	-
https://apps.apple.com/us/app/nfl-onepass/id1456010454	IOS	No	-
https://apps.apple.com/us/app/nfl/id389781154	IOS	No	-
https://play.google.com/store/search?q=nfl&c=apps&hl=en_US	ANDROID	No	-