[New Bug Bounty] Poloniex Has Launched Bug Bounty With Up to $5,000 Reward Per Critical Vulnerability

Alex Horlan
Head of Triage, HackenProof
1 Minute Read

Meet Poloniex

Poloniex is a cryptocurrency exchange that allows you to buy or sell digital assets, such as bitcoin (BTC), ether (ETH), TRON (TRX), and other altcoins. The exchange guarantees that users will experience safety and security while conducting transactions.

Check Out The Rewards

If you find a vulnerability according to the bounty rules, Poloniex will reward you:

  • Critical: $5,000
  • High: $3,000
  • Medium: $500
  • Low: $250

Join The Bounty Hunt

There are two assets to scope:

  • Web
  • API

Make sure your reports contain info about these incidents:

  • Business logic issues
  • Payments manipulation
  • Remote code execution (RCE)
  • Injection vulnerabilities (SQL, XXE)
  • File inclusions (Local & Remote)
  • Access Control Issues (IDOR, Privilege Escalation, etc)
  • Leakage of sensitive information
  • Server-Side Request Forgery (SSRF)
  • Cross-Site Request Forgery (CSRF)
  • Cross-Site Scripting (XSS)
  • Directory traversal
  • Other vulnerability with a clear potential loss

Once you’re ready, click here to join the bounty hunt!

Read more on HackenProof Blog