Adobe follows Facebook Footsteps & Launches Vulnerability Disclosure Program

Adobe launches Vulnerability disclosure program for the security researchers to improve the security of its products. On Wednesday the program was launched on HackerOne and the company encourages the security researches from all over the world to contribute in it and report Vulnerabilities.

Adobe was not the first who has launched vulnerability disclosure program for security researchers. Big giants like Facebook, Microsoft, PayPal, Mozila and many other software giants has received hug success after introducing this program. After these bounty programs launch these companies managed to overcome some very severe vulnerabilities in their software and website.

On a blog post the company’s Security program manager Pieter Ockers said that ” In recognition of the important role that independent security researchers play in keeping Adobe customers safe, today Adobe launches a web application vulnerability disclosure program on the HackerOne platform. Bug hunters who identify a web application vulnerability in an Adobe online service or web property can now privately disclose the issue to Adobe while boosting their HackerOne reputation score.”

In its bug disclosure guideline Adobe encourages security researchers to focus on web application vulnerabilities like Cross-site scripting, authentication or authorization flaws, injection vulnerabilities, injection vulnerabilities, information disclosure, Cross-site request forgery in a privileged context, Directory Traversal, Server-side code execution,Significant Security Misconfiguration.

The reward amount has not been disclosed by the Adobe but it is believed the the amount of reward will be decided after the Adobe’s security team asses how severe the vulnerability is. Adobe also says that the researcher should not publicly disclose the vulnerability before reporting it to them.

Ehacking Staff
With more than 50 global partners, we are proud to count the world’s leading cybersecurity training provider. EH Academy is the brainchild of Ehacking, which has been involved in the field of training since the past Five years and continues to help in creating professional IT experts.

Most Popular

Top 10 things to Do After Installing Kali Linux

Kali Linux is considered to be one of the best hacking distribution of this era, it is developed by Offensive Security to give an...

Become a spy in your own right with Xnspy Android spying app

Having become widely popular among parents and employers, spying apps have become quite the norm nowadays. Android spying apps have made it a lot...

e-Services Portals Potentially Expose Government Infrastructure to File-based Attacks

More and more users are embracing technology to perform their day-to-day activities. It’s not only private businesses that are forced to establish digital channels...

What is Nmap? How to use Nmap for Information Gathering

Nmap stands for Network Mapper, a powerful network scanning and host detection tool that is being used to perform reconnaissance in a very first...