FIS

As part of our on-going security program, we always want to ensure our most critical assets are always our most secure assets. As part of this endeavor, we are adding a $100,000 payout for authentication bypass on each of the following assets:

  •   https://fisglobal.gpcloudservice.com/
  •   https://login6.fisglobal.com/idp/elogin/

To qualify for this payout, you must gain access to the asset with the privileges of an authorized or privileged user by EVADING or CIRCUMVENTING an authentication mechanism.

*Discovering valid credentials via traffic decryption, social engineering, or data disclosure do NOT qualify for payout.
*Subdomains of these assets do not qualify for payout.
*These assets are also in scope for any other valid class of vulnerability that qualifies for a reward as per the program brief.
*Only the FIRST valid submission will be paid out the $100,000 for each URL, all subsequent findings will be rewarded on the standard bounty table.