Opera maintains both a public bug bounty program, and a private program, where security researchers can submit security issues they have found in Opera’s products for cash rewards. We like to highlight some of the issues that have been submitted, to educate the community about the types of issues they should be on the look-out...

» Read more
Opera_Fuzzing_Campaign

One of my earlier posts outlined how I had discovered six security vulnerabilities in the Privoxy software using the technique of fuzzing to cause the software to crash. This post outlines how I discovered three more vulnerabilities in Privoxy related to a non-crashing vulnerability: memory leaks. In many ways, fuzzing is much more than just...

» Read more

Opera manages a Bug Bounty program where researchers can report vulnerabilities in Opera's software and be rewarded for it. For high quality reports, we like to invite researchers to write about their findings. In this post, Opera's Security Team has invited Bug Bounty Hunter Renwa to write about a recent vulnerability that he reported, which was subsequently fixed and $4,000 USD reward given. What follows is his write-up and experience.

» Read more