Writing title of a report

The report title is the first thing that the program owner looks at and notices about your report. The report title should be explicit and to the point. If the report title has emotional involvement to it, it is often not considered as a positive factor by the program owners. The title is the first impression about your report that the program owners get and it is what shows the level of maturity of the reporter and their experience. A straightforward title should be the starting point of your report. The following are a few examples of bad report titles:

• Urgent! SQL injection found
• Attention! Critical vulnerability
• Very critical account takeover flaw

The following are some examples of to how you can craft your title better:

• Union-based SQL injection in developer's portal
• Hostile subdomain takeover in admin.xyz.com
• Account takeover using password reset token