Auth0 by Okta

We provide a universal authentication & authorization platform for web, mobile, and legacy applications.

  • $100 – $50,000 per vulnerability
  • Safe harbor
Submit report

Program stats

  • Vulnerabilities rewarded 3
  • Validation within 2 days 75% of submissions are accepted or rejected within 2 days
  • Average payout $233.33 within the last 3 months

Latest hall of famers

View the hall

Recently joined this program

89 total

Disclosure

Please note: This program or engagement does not allow disclosure. You may not release information about vulnerabilities found in this program or engagement to the public.

We recognize the crucial role of community researcher involvement and the establishment of a robust foundation in safeguarding our customers and their data. We value every security submission and aim to provide prompt responses.

Auth0 welcomes you to participate in testing and enhancing the security of our Identity Platform. Your dedication and contributions to strengthening our security are greatly appreciated, and we eagerly anticipate collaborating with the researcher community to develop a rewarding and effective bug bounty program. Best of luck and happy hunting!

Scope and rewards

Program rules

This program follows Bugcrowd’s standard disclosure terms.

For any testing issues (such as broken credentials, inaccessible application, or Bugcrowd Ninja email problems), please submit through the Bugcrowd Support Portal. We will address your issue as soon as possible.

This program does not offer financial or point-based rewards for P5 — Informational findings. Learn more about Bugcrowd’s VRT.