Report Vulnerabilities
The OPPO Security Center (OSRC) warmly welcomes security researchers to report vulnerabilities related to OPPO products. You can now submit your reports through HackerOne's Bug Bounty Program (BBP) or via email.
Due to the potentially sensitive information involved in vulnerability reports, if you choose to submit your report via email, we highly recommend using our public PGP key for secure transmission.
Please ensure that your submitted vulnerability reports include the following information:
- Report Title
- Affected Product Name/Version
- Vulnerability Type
- Severity Level
- Proof of Concept (PoC)
- Supporting Evidence Attachments (photos/videos, etc.)
Thank you for your commitment to enhancing the security of OPPO products. We look forward to your valuable contributions.
* Note: Reports not submitted through "HackerOne", but sent directly to us via email are not eligible for a reward.