submit bug report: http://www.bitdefender.comThe Bug Bounty Reward program encourages security researchers to identify and submit vulnerability reports regarding virtually everything that bears the Bitdefender brand, including but not limited to the website, products and services.
Program Terms
Participation in the Bitdefender Bug Bounty Reward program is voluntary and subject to the legal terms and conditions detailed on Terms and Conditions page. By submitting a vulnerability report to Bitdefender, you acknowledge that you have read and agreed to our program terms.
Qualification Criteria
The program covers any exploitable vulnerability that can compromise the integrity of our user data, crash applications (leading to compromise of data) or disclose sensitive information (for example remote code execution, SQL injection, Cross-Site Scripting, Cross-Site Request Forgery, information disclosure of sensitive data, authentication theft or bypass, clickjacking).
Make sure your submission report includes the proof of concept and replication information.
Non-qualifying vulnerabilities
This is not a BETA test program. Cosmetic bugs, UX issues, product crashes that can’t be exploited will not qualify.
Submission process
We encourage you to send your submissions in an encrypted format to bugbounty@bitdefender.com
We prefer PGP and you can import our public key from here. Make sure your report includes:
A clear and relevant title
Affected product / service
Vulnerability details and impact
Reproduction steps / Proof of Concept
Policy:
http://www.bitdefender.com/site/view/bug-bounty.htmlDomains
bitdefender.com
