SoundCloud

SoundCloud is the world’s largest open audio platform. With over 200 million tracks from 20 million creators heard in 190 countries, what’s next in music is first on SoundCloud.

  • $200 – $4,500 per vulnerability
  • Safe harbor
Submit report

Updates to scope - please read

Hi all,

The In scope target list has been revised, please see below:

  • repostnetwork.com
  • *.repostnetwork.com
  • soundcloud.com
  • *.soundcloud.com
  • souncloud.org
  • *.soundcloud.org
  • android & ios apps
  • soundcloud.org
  • *.soundcloud.org

Before submitting a report please run a DNS query for your domain and check if the respective CNAME points to a service owned by SoundCloud. If not, this domain is out-of-scope as we can not guarantee safe harbor for other 3rd party services. SoundCloud domains pointing to AWS, GCP or the IP range 178.249.136.0/21 are always in-scope, if not clearly marked out-of-scope.

As always, please be sure to review the program brief in detail, and if you have any questions, please reach out support@bugcrowd.com.

Happy Hunting!

Chris_Shah_Bugcrowd
Chris_Shah_Bugcrowd