03. Bugcrowd

Bugcrowd

Bugcrowd is a crowdsourced security platform managing bug bounty programs for high tech companies, including Udacity. The Udacity bug bounty program recognizes and compensates students who discover any security vulnerabilities with Udacity's website.

Sign up for Udacity's bug bounty program and submit any security vulnerabilities you discover!

For more information, please refer to the Bugcrowd FAQ Page.

Focus Areas

  • Significant Data Exposure
  • Authentication Bypass
  • Privilege Escalation
  • Significant XSS

Out Of Scope aspects

  • Course content related issues
  • Social engineering exploits
  • Denial of Service or Distributed Denial of Service
  • Brute-force attacks
  • No attacks on our users directly
  • Any 3rd party services
  • Automated/scripted account creation
  • Mobile applications