Today we celebrate the five year anniversary of #curl's bug-bounty. It has resulted in 69 reported vulnerabilities and almost 80,000 USD payouts. Out of a total of 439 submissions. 86 of them were considered "informative", which mostly means they were handled as normal bugs.
Submit your suspected curl securirty issue here: hackerone.com/curl
curl - Bug Bounty Program | HackerOne
The curl Bug Bounty Program enlists the help of the hacker community at HackerOne to make curl more secure.HackerOne
daniel:// stenberg://
in reply to daniel:// stenberg:// • • •Thoralf Will 🇺🇦🇮🇱🇹🇼
in reply to daniel:// stenberg:// • • •Will Orr
in reply to daniel:// stenberg:// • • •daniel:// stenberg://
in reply to Will Orr • • •tarakiyee
in reply to daniel:// stenberg:// • • •Thanks for sharing these numbers!
I'm curious, is it possible to also get a breakdown by severity for the reported ones?
daniel:// stenberg://
in reply to tarakiyee • • •spv
in reply to daniel:// stenberg:// • • •