Technology Company Looking to Work with You!

Joinable
  • $200 – $4,500 per vulnerability
  • Safe harbor

This is the teaser page of a private program

Public code winter-mountain-3095

Use this public code to communicate with Bugcrowd support about this program.

No technology is perfect and we believe that working with skilled security researchers across the globe is crucial in identifying weaknesses in any technology. We are excited for you to participate as a security researcher to help us identify vulnerabilities in our web app and APIs. Good luck, and happy hunting!

Reward range

Last updated

Technical severity Reward range
p1 Critical $4,100 - $4,500
p2 Severe $1,500 - $1,750
p3 Moderate $600 - $850
p4 Low $200 - $250
P5 submissions do not receive any rewards for this program.

Targets

  • website
  • api

We're interested in any findings related to privilege escalation, especially horizontal privilege escalation (i.e. when a user from one organization can view or edit data from another unrelated organization). We're also interested in any vertical privilege escalation findings (i.e. when a user can perform actions or view/modify data in their own organization, when this should be prevented by their role).