Home Tools Pricing API Docs About Sign in Get started

Bugcrowd VRT

Utilities

Browse the Bugcrowd Vulnerability Rating Taxonomy with plain-language enrichment, CWE/OWASP mapping and notes.

What is Bugcrowd VRT?

Bugcrowd VRT is an interactive reference for the industry-standard Vulnerability Rating Taxonomy. Browse categories and entries by priority, see the official rating, and read added context — a plain-English explanation, CWE and OWASP mappings, difficulty and remediation pointers.

It helps you classify a finding consistently and communicate severity in terms triagers recognize, with your own per-entry notes saved to your account.

What it offers

Full VRT taxonomy — every category and entry, sortable by priority, category or name.
Plain-language enrichment — an "in plain words" explanation for each entry.
Standards mapping — CWE and OWASP references alongside the VRT rating.
Difficulty & metadata — type, priority and exploitation difficulty at a glance.
Personal notes — save your own notes per entry, tied to your account.

Where it fits in your workflow

→Classify and justify the severity of a finding before reporting.
→Look up how a program is likely to rate a given bug class.

Use Bugcrowd VRT

Run it from your dashboard.

Create free account Sign in Use via API

At a glance

CategoryUtilities

RunsServer-side

Token cost Free — no tokens

AccessFree · no login to try

Status● Live

Frequently asked questions

Is this affiliated with Bugcrowd?

No. It is an independent reference built around the publicly available Vulnerability Rating Taxonomy, with our own added explanations and mappings.

Explore more tools →