Vulnerability Disclosure Program (VDP)

VDPs are meant for responsibly reporting vulnerabilities you encounter — not for actively hunting for fame or reputation. Even if you're just starting out, consider focusing on rewarded bug bounty programs instead.

thetradedesk-mbb

BugcrowdView on Bugcrowd

RawAI Enhanced

In Scope

Out of Scope

In-Scope Assets (32)

Asset	Category	Bounty	Quick Links
*.adsrvr.org	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
*.thetradedesk.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://api.thetradedesk.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://atlantis-ext.myopenpass.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://atlassian.thetradedesk.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://auth.myopenpass.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://auth.thetradedesk.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://cdn.myopenpass.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://core-prod.uidapi.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://cstg-integ.uidapi.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://demo.myopenpass.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://desk.thetradedesk.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://esp-jssdk-integ.uidapi.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://esp-srvonly-integ.uidapi.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://example-jssdk-integ.uidapi.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://example-srvonly-integ.uidapi.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://myopenpass.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://ops-sso.adsrvr.org/	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://optout-prod.uidapi.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://optout.prod.euid.eu	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://partner.myopenpass.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://partner.thetradedesk.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://portal.unifiedid.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://prod.euid.eu	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://prod.uidapi.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://secure-signals-jssdk-integ.uidapi.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://secure-signals-srvonly-integ.uidapi.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://transparentadvertising.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://transparentadvertising.eu	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://www.adsrvr.org	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://www.thecurrent.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal
https://www.thetradedesk.com	URL	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal

Out-of-Scope Assets (14)

Asset	Category	Bounty
Anything not explicitly listed as Tier 1 or Tier 2	OTHER	No
Applications that resolve to *.okta.com (ex: openpath-login.thetradedesk.com)	OTHER	No
Applications that resolve to *.quilvem.com (ex: update.adsrvr.org)	OTHER	No
Applications that resolve to *.skilljarapp.com	OTHER	No
Applications that resolve to *.smartling.com (ex: id.thetradedesk.com)	OTHER	No
argocd.*.uidapi.com	URL	No
https://ask.thetradedesk.com	URL	No
https://bynder.thetradedesk.com	URL	No
https://euid.eu	URL	No
https://investors.thetradedesk.com	URL	No
https://openpath.thetradedesk.com	URL	No
https://stationery.thetradedesk.com	URL	No
https://unifiedid.com	URL	No
https://www.thetradedeskedgeacademy.com	URL	No