Bug Bounties

Quora

Powered by: 

Allows bounty splitting: 

Average time to first program response: 43

Average time to bounty awarded null: 193

Average time to report resolved: 851

Handle quora

Managed program: false

Name: Quora

Offers bounties: true

Offers swag: false

Response efficiency percentage: 88

Submission state: open

Url: https://hackerone.com/quora

Website: http://www.quora.com

In scope:

  • Asset identifier: *.quora.com
  • Asset type: URL
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: NEW FEATURE launched December 2018 - ***Spaces*** * Automated security testing against the site or APIs are not allowed. * Localize all your tests to the account you are using to test. Don't affect other users. * Findings derived primarily from social engineering (e.g. phishing) are not allowed. * Follow HackerOne's [disclosure guidelines] (https://hackerone.com/guidelines).
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: com.quora.android
  • Asset type: GOOGLE_PLAY_APP_ID
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: The latest version of Android app installed from the official store at: https://play.google.com/store/apps/details?id=com.quora.android
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: com.quora.app.mobile
  • Asset type: APPLE_STORE_APP_ID
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: The latest version of iOS app installed from the official store at: https://itunes.apple.com/us/developer/quora-inc/id456034440
  • Integrity requirements: 
  • Max severity: critical