Vulnerability Disclosure Program (VDP)

VDPs are meant for responsibly reporting vulnerabilities you encounter — not for actively hunting for fame or reputation. Even if you're just starting out, consider focusing on rewarded bug bounty programs instead.

luminor

HackerOneView on HackerOne

RawAI Enhanced

In Scope

Out of Scope

In-Scope Assets (5)

Asset	Category	Bounty	Quick Links
*.luminor.ee	WILDCARD	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.luminor.lt	WILDCARD	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.luminor.lv	WILDCARD	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
*.luminorgroup.com	WILDCARD	No	crt.sh Google Shodan SecurityTrails Wayback DNSdumpster VirusTotal AlienVault OTX GitHub Fofa
Any other Luminor System, Website, App, Domain and IP	OTHER	No	-

Out-of-Scope Assets (2)

Asset	Category	Bounty
*.ondato.net	WILDCARD	No
luminor.nyc3.digitaloceanspaces.com	URL	No

Scope Changes (14)

Apr 14, 2026

Change	Asset	Category	Scope	Time
Added	luminor.nyc3.digitaloceanspaces.com	URL	Out of Scope	07:23
Added	*.ondato.net	WILDCARD	Out of Scope	07:23
Added	luminor.nyc3.digitaloceanspaces.com	URL	Out of Scope	07:23
Added	*.ondato.net	WILDCARD	Out of Scope	07:23

Mar 31, 2026

Change	Asset	Category	Scope	Time
Added	any other luminor system, website, app, domain and ip	OTHER	In Scope	22:23
Added	*.luminor.lt	WILDCARD	In Scope	22:23
Added	*.luminor.lv	WILDCARD	In Scope	22:23
Added	*.luminor.ee	WILDCARD	In Scope	22:23
Added	*.luminorgroup.com	WILDCARD	In Scope	22:23
Added	any other luminor system, website, app, domain and ip	OTHER	In Scope	22:23
Added	*.luminor.lt	WILDCARD	In Scope	22:23
Added	*.luminor.lv	WILDCARD	In Scope	22:23
Added	*.luminor.ee	WILDCARD	In Scope	22:23
Added	*.luminorgroup.com	WILDCARD	In Scope	22:23