ExpressVPN’s vulnerability disclosure program

At ExpressVPN, we’re committed to ensuring that our apps and services are of the highest security standards. As part of this effort, we’ve launched a vulnerability disclosure program (VDP) in collaboration with BugCrowd. This program allows anyone to easily let us know of possible bugs.

If you think ExpressVPN apps or other assets aren’t behaving as expected, use the submission form below to report a bug anonymously.

A magnifying glass over a bug and code.

Report a vulnerability

Our bug bounty program

Our vulnerability disclosure program provides an easy way for you to report bugs anonymously. If you are seeking a potential reward for your findings, please submit your report through our bug bounty program.