Credit Karma

Free Credit Scores & Credit Report Monitoring

  • $100 – $5,000 per vulnerability
  • Partial safe harbor
Submit report

Program Scope Update

Hello Credit Karma researchers!

Please note the following has been added to the brief and all testing moving forward is required to be done through the following IP:

In order to access the application, researchers MUST go through the following proxy:

IP: 52.6.69.30
Port: 25603
Proxy authentication: bugcrowd:bugcr0wd

See here https://support.portswigger.net/customer/en/portal/articles/2363078-burp-suite-options-upstream-proxy-servers for more information on setting up burp to work with an upstream proxy.

Happy Hunting!

The Bugcrowd Team

habing
habing