Fast Trade, Fast Copy Trade, Fast AFK Automation. Discover faster, Trading in seconds🚀 On-chain at the speed of light.
Target | Type | Severity | Reward |
---|---|---|---|
https://gmgn.ai/ Copy | Web | Critical | Bounty |
*.gmgn.ai Copy | Web | Critical | Bounty |
https://apps.apple.com/sg/app/gmgn-lite/id6740896821 Copy | iOS | Critical | Bounty |
https://play.google.com/store/apps/details?id=com.gmgn.app Copy | Android | Critical | Bounty |
Safety and security are our top priorities at GMGN. To eliminate system vulnerabilities and further improve GMGN services, GMGN has launched a vulnerability bounty program for all security researchers. We will evaluate all reported security issues based on their impact on users and assets, and rewards will be paid in USDT once your submission is accepted. Please be advised that only reports with a detailed description of the vulnerability and a complete, working proof of concept are eligible for rewards.
Vulnerabilities that threaten core or essential assets, potentially leading to major business disruptions or unauthorized access to GMGN wallets, funds, or private keys.
Estimated as 10% from potential losses but not more than 1mln.
Critical: 3,000 - 10,000 USDT
Vulnerabilities that undermine user assets’ security.
Vulnerabilities that bypass the applications or procedures under normal trading logic.
Vulnerabilities that could remotely access essential information and authentication information of users.
Vulnerabilities related to key generation, encryption, decryption, signing, and verification.
High: 1,000 - 3,000 USDT
Vulnerabilities that lead to high-risk information leakage.
Vulnerabilities with a similar impact as critical vulnerabilities but are dependent on specific prerequisites.
Medium: 300 -1,000 USDT
Vulnerabilities that lead to the leakage of part of the users’ info through interaction or financial fraud.
Vulnerabilities that cause GMGN to be unable to respond to users’ requests from the web or mobile Apps.
Low: 50 - 300 USDT
Vulnerabilities due to product design defects that do not affect the security of users’ assets.
Vulnerabilities that lead to Denial of Service of core GMGN services.
The following issues are not qualified for any reward:
We are happy to thank everyone who submits valid reports which help us improve the security. However, only those that meet the following eligibility requirements may receive a monetary reward: