Vulnerability Disclosure Program (VDP)
VDPs are meant for responsibly reporting vulnerabilities you encounter — not for actively hunting for fame or reputation. Even if you're just starting out, consider focusing on rewarded bug bounty programs instead.
vendasta
11
In Scope
6
Out of Scope
In-Scope Assets (11)
| Asset | Category | Bounty | Quick Links | |
|---|---|---|---|---|
| *.apigateway.co | WILDCARD | No | ||
| *.vendasta-internal.com | WILDCARD | No | ||
| *.yesware.com | WILDCARD | No | ||
| customervoice.biz | URL | No | ||
| partners.vendasta.com | URL | No | ||
| task-manager.biz | URL | No | ||
| your-domain.pdqs.mobi | URL | No | ||
| your-domain.smblogin.com | URL | No | ||
| your-domain.snapshotreport.biz | URL | No | ||
| your-domain.socialsmbs.com | URL | No | ||
| your-domain.steprep.com | URL | No |
Out-of-Scope Assets (6)
| Asset | Category | Bounty | |
|---|---|---|---|
| Spamming of forms and APIs with automated vulnerability scanners are strictly out of scope | OTHER | No | |
| help.yesware.com | URL | No | |
| roadmap.vendasta.com | URL | No | |
| t.yesware.com | URL | No | |
| www.vendasta.com | URL | No | |
| www.yesware.com | URL | No |