Found a security issue within our application?
Level | Example | Maximum Bug Bounty |
---|---|---|
6. Severe | Unauthorized access to any part of the platform - Ability to delete or manipulate user data or analytics | Let’s talk |
5. Critical | Unauthorized ability to execute arbitrary code on the server- Exploiting API endpoints to access restricted data | Up to $5,000 |
4. High | SQL injection leading to data exfiltration- Bypassing authentication mechanisms | Up to $2,500 |
3. Medium | Cross-site scripting (XSS)- CSRF that affects user accounts | Up to $1,000 |
2. Low | Security misconfigurations- Information leakage (server info, stack traces) | Up to $250 |
1. Info | Suggestions for improvements or best practices |