cPanel Bug Bounty Team Not Responding (I've reported CRITICAL vulnerability)

Orion Hridoy

• March 24, 2025 18:04

I've reported super critical bug. But cPanel team haven't reached me yet. I just want to know, is there any particular process to get a follow up?

• 

  cPRex Jurassic Moderator

  • March 24, 2025 18:54

  Hey there!  Was this sent from the email address associated with your support account here?  Once I can confirm that I can reach out to them and get more details.

  0
• 

  Orion Hridoy

  • March 25, 2025 13:43
  • Edited

  Yes. With the same email.

  I reported another Critical vulnerability before which needs a third party connection, so they immediately replied and said this report is invalid due to 3td party connection.

  After that i found another vulnerability which doesn't needs any type of 3rd party interaction. Pure cPanel critical vulnerability. But they're not responding to the new report.

  0
• 

  cPRex Jurassic Moderator

  • March 25, 2025 14:16

  Thanks for the confirmation.  I spoke with the security team just now and they are going to go over all of your submissions and reach out if they need more details.

  0
• 

  Orion Hridoy

  • March 25, 2025 15:10
  • Edited

  Thank you. And would be appreciate if they provide some updates regarding the issue.

  0
• 

  cPRex Jurassic Moderator

  • March 25, 2025 16:20

  You're very welcome!

  0

Please sign in to leave a comment.