Responsible Disclosure Bug Bounty [DIRECT]

This policy does not grant permission to hack or disrupt [Company Name] outside the described scope.

| Severity | Example Vulnerability Types | Bounty Range (USD) | |--------------|----------------------------------------------------|--------------------| | | RCE, SQLi with data extraction, privilege escalation | $1,000 – $5,000 | | High | SSRF to internal network, auth bypass, significant data leak | $500 – $1,000 | | Medium | CSRF on sensitive actions, stored XSS, IDOR on private data | $200 – $500 | | Low | Reflected XSS, limited info disclosure, rate-limiting issues | $50 – $200 | responsible disclosure bug bounty

Leave a Reply

Your email address will not be published. Required fields are marked *