Vulnerability Disclosure Program (VDP)
VDPs are meant for responsibly reporting vulnerabilities you encounter — not for actively hunting for fame or reputation. Even if you're just starting out, consider focusing on rewarded bug bounty programs instead.
avalara
14
In Scope
0
Out of Scope
In-Scope Assets (14)
| Asset | Category | Bounty | Quick Links | |
|---|---|---|---|---|
| *.3ce.com | WILDCARD | No | ||
| *.avalara.com | WILDCARD | No | ||
| *.avalara.io | WILDCARD | No | ||
| *.avalara.net | WILDCARD | No | ||
| *.avalarabrasil.com.br | WILDCARD | No | ||
| *.certexpress.com | WILDCARD | No | ||
| *.crowdreason.com | WILDCARD | No | ||
| *.davosalestax.com | WILDCARD | No | ||
| *.impendulo.com | WILDCARD | No | ||
| *.inposia.com | WILDCARD | No | ||
| *.netleglobal.com | WILDCARD | No | ||
| *.papercrane.io | WILDCARD | No | ||
| *.track1099.com | WILDCARD | No | ||
| *.ttrus.com | WILDCARD | No |
Scope Changes (41)
Mar 10, 2026
| Change | Asset | Category | Scope | Time |
|---|---|---|---|---|
| Added | *.avalarabrasil.com.br | WILDCARD | In Scope | 14:40 |
| Added | *.avalarabrasil.com.br | WILDCARD | In Scope | 14:40 |
Feb 25, 2026
| Change | Asset | Category | Scope | Time |
|---|---|---|---|---|
| Added | *.impendulo.com | WILDCARD | In Scope | 19:16 |
| Added | *.track1099.com | WILDCARD | In Scope | 19:16 |
| Added | *.papercrane.io | WILDCARD | In Scope | 19:16 |
| Added | *.avalara.net | WILDCARD | In Scope | 19:16 |
| Added | *.ttrus.com | WILDCARD | In Scope | 19:16 |
| Added | *.davosalestax.com | WILDCARD | In Scope | 19:16 |
| Added | *.3ce.com | WILDCARD | In Scope | 19:16 |
| Added | *.crowdreason.com | WILDCARD | In Scope | 19:16 |
| Added | *.netleglobal.com | WILDCARD | In Scope | 19:16 |
| Added | *.inposia.com | WILDCARD | In Scope | 19:16 |
| Added | *.avalara.io | WILDCARD | In Scope | 19:16 |
| Added | *.avalara.com | WILDCARD | In Scope | 19:16 |
| Added | *.certexpress.com | WILDCARD | In Scope | 19:16 |
Feb 22, 2026
| Change | Asset | Category | Scope | Time |
|---|---|---|---|---|
| Added | *.certexpress.com | WILDCARD | In Scope | 00:45 |
| Added | *.papercrane.io | WILDCARD | In Scope | 00:45 |
| Added | *.netleglobal.com | WILDCARD | In Scope | 00:45 |
| Added | *.track1099.com | WILDCARD | In Scope | 00:45 |
| Added | *.davosalestax.com | WILDCARD | In Scope | 00:45 |
| Added | *.impendulo.com | WILDCARD | In Scope | 00:45 |
| Added | *.avalara.net | WILDCARD | In Scope | 00:45 |
| Added | *.inposia.com | WILDCARD | In Scope | 00:45 |
| Added | *.crowdreason.com | WILDCARD | In Scope | 00:45 |
| Added | *.3ce.com | WILDCARD | In Scope | 00:45 |
| Added | *.ttrus.com | WILDCARD | In Scope | 00:45 |
| Added | *.avalara.com | WILDCARD | In Scope | 00:45 |
| Added | *.avalara.io | WILDCARD | In Scope | 00:45 |
Feb 21, 2026
| Change | Asset | Category | Scope | Time |
|---|---|---|---|---|
| Added | *.certexpress.com | WILDCARD | In Scope | 19:12 |
| Added | *.impendulo.com | WILDCARD | In Scope | 19:12 |
| Added | *.ttrus.com | WILDCARD | In Scope | 19:12 |
| Added | *.davosalestax.com | WILDCARD | In Scope | 19:12 |
| Added | *.3ce.com | WILDCARD | In Scope | 19:12 |
| Added | *.track1099.com | WILDCARD | In Scope | 19:12 |
| Added | *.crowdreason.com | WILDCARD | In Scope | 19:12 |
| Added | *.netleglobal.com | WILDCARD | In Scope | 19:12 |
| Added | *.inposia.com | WILDCARD | In Scope | 19:12 |
| Added | *.papercrane.io | WILDCARD | In Scope | 19:12 |
| Added | *.avalara.io | WILDCARD | In Scope | 19:12 |
| Added | *.avalara.net | WILDCARD | In Scope | 19:12 |
| Added | *.avalara.com | WILDCARD | In Scope | 19:12 |