Vulnerability Disclosure Program (VDP)
VDPs are meant for responsibly reporting vulnerabilities you encounter — not for actively hunting for fame or reputation. Even if you're just starting out, consider focusing on rewarded bug bounty programs instead.
wpengine/wpengine
15
In Scope
2
Out of Scope
In-Scope Assets (15)
| Asset | Category | Bounty | Quick Links | |
|---|---|---|---|---|
| *. advancedcustomfields.com | WILDCARD | No | - | |
| *. bettersearchreplace.com | WILDCARD | No | - | |
| *.deliciousbrains.com | WILDCARD | No | ||
| *.studiopress.com | WILDCARD | No | ||
| *.wpengine.io | WILDCARD | No | ||
| *.wpesvc.net | WILDCARD | No | ||
| NitroPack Plugins | OTHER | No | - | |
| WP Engine-developed WordPress Plugins and Themes | OTHER | No | - | |
| app.getflywheel.com | URL | No | ||
| getflywheel.com | URL | No | ||
| https://nitropack.io | URL | No | ||
| my.wpengine.com | URL | No | ||
| spressforumstg.wpengine.com | URL | No | ||
| studiopress.blog | URL | No | ||
| wpengine.com | URL | No |
Out-of-Scope Assets (2)
| Asset | Category | Bounty | |
|---|---|---|---|
| https://getflywheel.com/schedule-a-demo/ | URL | No | |
| https://wpengine.com/contact/ | URL | No |