Vulnerability Disclosure Program (VDP)
VDPs are meant for responsibly reporting vulnerabilities you encounter — not for actively hunting for fame or reputation. Even if you're just starting out, consider focusing on rewarded bug bounty programs instead.
cfr
3
In Scope
4
Out of Scope
In-Scope Assets (3)
| Asset | Category | Bounty | Quick Links | |
|---|---|---|---|---|
| https://education.cfr.org/ | URL | No | ||
| https://thinkglobalhealth.org | URL | No | ||
| https://www.cfr.org/ | URL | No |
Out-of-Scope Assets (4)
| Asset | Category | Bounty | |
|---|---|---|---|
| https://modeldiplomacy.cfr.org | URL | No | |
| https://subs.foreignaffairs.com | URL | No | |
| https://subscribe.foreignaffairs.com | URL | No | |
| https://world101.cfr.org/ | URL | No |