//
Detail Updates Leaderboard
Description

Flemish Radio and Television Broadcasting Organization bugbounty program

Bounties
Low
0.1 - 3.9
Medium
4.0 - 6.9
High
7.0 - 8.9
Critical
9.0 - 9.4
Exceptional
9.5 - 10.0
Tier 2
€
100
300
750
1,300
2,000
Tier 2
€100 - €2,000
Rules of engagement
Required
Not applicable
max. 5 requests /sec
X-Intigriti-Username: {Username}

Our promise to you

  • We will respond to report as soon as possible!
  • We are happy to respond to any questions, please use the button in the right top corner for this.
  • We respect the safe harbour clause that you can find below

Your promise to us

  • Provide detailed but to-the point reproduction steps
  • Include a clear attack scenario. How will this affect us exactly?
  • Remember: quality over quantity!
  • Please do not discuss or post vulnerabilities without our consent (including PoC's on YouTube and Vimeo)
  • Please do not use automatic scanners -be creative and do it yourself! We cannot accept any submissions found by using automatic scanners. Scanners also won't improve your skills, and can cause a high server load (we'd like to put our time in thanking researchers rather than blocking their IP's πŸ˜‰)
  • Don't use the following methods as these are our production environments:
    • Bruteforce username/password logins
Domains
tier
type

API's

Tier 2
Other
  • vrt.be/vrtnu-api/graphql/v1
  • vrt.be/vrtnu-api/graphql/public/v1
  • api.vrt.radio
  • vrtnws-api.vrt.be
  • api.sporza.be
cds.vrt.radio
Tier 2
URL

The cds domain for VRT radio sites.

Mobile Applications

Other

VRT MAX iOS App
VRT MAX Android App
VRT NWS iOS App
VRT NWS Android App
Sporza iOS App
Sporza Android App
Ketnet Junior iOS App
Ketnet Junior Android App

Severity assessment

This program follows Intigriti's contextual CVSS standard

FAQ

Can I create a test account?

Yes and you are encouraged to do so! Please use your @intigriti.me email address for the account creation. More info can be found here: https://kb.intigriti.com/en/articles/2642598-intigriti-me-email-alias

All aboard!
Please log in or sign up on the platform

For obvious reasons we can only allow submissions or applications for our program with a valid Intigriti account.

It will only take 2 minutes to create a new one or even less to log in with an existing account, so don't hesitate and let's get started. We would be thrilled to have you as part of our community.