The Submission Details provides the information you need to investigate an issue reported by a researcher. All bug reports submitted to your program include the required information to help you reproduce and validate the issue. The requirements for each bug report depends on the bug type. For example, an XSS bug report must provide you with the attack string whereas a CSRF bug report must provide you with a proof of concept.
To view the details for a submission, select the submission from the Submissions Inbox.
The Submission Details page appears for the submission you have selected.
Each submission has the following information:
- Caption: The title for the bug report.
- Bug type: The bug or vulnerability type that the researcher has discovered.
- Bug URL: The location where you can find the bug or vulnerability in your application.
- Steps to reproduce: The steps to reproduce the reported bug or find the vulnerability.
Some bugs will have more information. Some will have less. It depends on the type of bug.