Program Removed

This program is no longer available on Bugcrowd. The scope data shown below is historical and may not reflect the final state of the program.

Vulnerability Disclosure Program (VDP)

VDPs are meant for responsibly reporting vulnerabilities you encounter — not for actively hunting for fame or reputation. Even if you're just starting out, consider focusing on rewarded bug bounty programs instead.

owaspjavasanitizer

BugcrowdView on Bugcrowd
RawAI Enhanced
2
In Scope
0
Out of Scope
In-Scope Assets (2)
AssetCategoryBountyQuick Links
https://github.com/OWASP/OWASPBugBounty/tree/master/JavaHTMLSanitizer/war-filesOTHERNo-
https://github.com/owasp/owaspbugbounty/tree/master/javahtmlsanitizer/war-filesURLNo
Scope Changes (9)
Jun 26, 2026
ChangeAssetCategoryScopeTime
Program Removed06:34
Jun 17, 2026
ChangeAssetCategoryScopeTime
Addedhttps://github.com/OWASP/OWASPBugBounty/tree/master/JavaHTMLSanitizer/war-filesOTHERIn Scope11:40
Addedhttps://github.com/OWASP/OWASPBugBounty/tree/master/JavaHTMLSanitizer/war-filesURLIn Scope11:40
Program Removed10:34
Mar 5, 2026
ChangeAssetCategoryScopeTime
Addedhttps://github.com/OWASP/OWASPBugBounty/tree/master/JavaHTMLSanitizer/war-filesOTHERIn Scope22:37
Addedhttps://github.com/OWASP/OWASPBugBounty/tree/master/JavaHTMLSanitizer/war-filesOTHERIn Scope22:37
Feb 25, 2026
ChangeAssetCategoryScopeTime
Addedhttps://github.com/OWASP/OWASPBugBounty/tree/master/JavaHTMLSanitizer/war-filesURLIn Scope19:20
Addedhttps://github.com/OWASP/OWASPBugBounty/tree/master/JavaHTMLSanitizer/war-filesOTHERIn Scope17:19
Addedhttps://github.com/OWASP/OWASPBugBounty/tree/master/JavaHTMLSanitizer/war-filesOTHERIn Scope17:19