Meet XT
XT the world’s first social infused cryptocurrency exchange for trading bitcoin, ethereum, and altcoins with deep liquidity and low fees.
Check Out The Rewards
If you find a vulnerability according to the bounty rules, XT will reward you:
- Critical: $1000 – $2000
- High: $400 – $800
- Medium: $150 – $300
- Low: $50 – $100
Join The Bounty Hunt
There are 2 assets types to scope!
- Web
- App
Make sure your reports contain info about these incidents:
- Business logic issues
- Payments manipulation
- Remote code execution (RCE)
- Injection vulnerabilities (SQL, XXE)
- File inclusions (Local & Remote)
- Access Control Issues (IDOR, Privilege Escalation, etc.)
- Leakage of sensitive information
- Server-Side Request Forgery (SSRF)
- Cross-Site Request Forgery (CSRF)
- Cross-Site Scripting (XSS)
- Directory traversal
- Other vulnerabilities with a clear potential loss
To increase your chances of finding a critical bug, read XT whitepaper here.
Once you’re ready, click here to join the bounty hunt!