Vulnerability Disclosure Program (VDP)

VDPs are meant for responsibly reporting vulnerabilities you encounter — not for actively hunting for fame or reputation. Even if you're just starting out, consider focusing on rewarded bug bounty programs instead.

auth0-okta

BugcrowdView on Bugcrowd
RawAI Enhanced
25
In Scope
11
Out of Scope

In-Scope Assets (25)

AssetCategoryBountyQuick Links
*.cic-bug-bounty.auth0app.comURLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
MFA IntegrationsOTHERNo-
auth0.comURLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
auth0.netURLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
config.cic-bug-bounty.auth0app.comURLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
https://api.us1.fga.dev/URLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
https://apps.apple.com/us/app/auth0-guardian/id1093447833IOSNo-
https://customers.us1.fga.dev/URLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
https://dashboard.fga.dev/URLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
https://github.com/auth0/Auth0.NetOTHERNo-
https://github.com/auth0/auth0-javaOTHERNo-
https://github.com/auth0/auth0-phpOTHERNo-
https://github.com/auth0/auth0-spa-jsOTHERNo-
https://github.com/auth0/auth0.jsOTHERNo-
https://github.com/auth0/lockOTHERNo-
https://github.com/auth0/nextjs-auth0OTHERNo-
https://github.com/auth0/react-native-auth0OTHERNo-
https://manage.cic-bug-bounty.auth0app.com/URLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
https://marketplace.auth0.comURLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
https://play.fga.dev/URLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
https://play.google.com/store/apps/details?id=com.auth0.guardian&hl=en_US&gl=USANDROIDNo
Play Store
jwt.ioURLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
openidconnect.netURLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
samltool.ioURLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
webauthn.meURLNo
crt.shGoogleShodanSecurityTrailsWaybackDNSdumpsterVirusTotal
Out-of-Scope Assets (11)
AssetCategoryBounty
Auth0 Docs (including quickstarts)URLNo
accounts.auth0.comURLNo
auth0.auth0.comURLNo
community.auth0.comURLNo
goextend.ioURLNo
https://support.auth0.com/tickets/newURLNo
manage.auth0.comURLNo
phenix.rocksURLNo
sharelock.ioURLNo
support.auth0.comURLNo
webtask.ioURLNo