Vulnerability reward program

Vulnerability reward program

Rules

01

Give us enough time to fix the vulnerability before distributing information about it in any way.

02

During testing, make the necessary efforts to avoid causing any damage to the exchange and its users.

03

Provide the most comprehensive information about the vulnerability so that we can quickly fix it.

Reward
250$
Remote Code Execution
250$
LFI/LFI/SQLi
250$
Balance manipulation
150$
Partial authentication bypass
150$
Theft of privileged information
150$
Other vulnerability with clear potential for financial or data loss
In general, do not correspond to the severity threshold:
  • Ddos
  • Self xss
  • Spam
  • Social engineering