Company
codingame.com
Program URL
https://www.codingame.com/work/vulnerability-disclosure-policy/
Contact
No response
Description
No response
Rewards
Program type
bounty
Status
active
Safe harbor
No response
Allows disclosure
true
Domains
Accepted targets are codingame.com, codingame.eu, codingame-app.com and all their existing subdomains, with the exception of metabase.codingame.com.
Structured scope
No response
Out of scope
Our basic principle for this program : we consider as a valid vulnerability, only those that can reasonably lead to : data leak, credential leak, undue data modification or deletion, real and reproducible impact on performance / availability. A few low level issues of which impact can be questioned may also be out of scope purposely (due to risk VS benefit considerations).
Excluded methods
Requires account
No response
Minimum payout
50
Maximum payout
500
Currency
USD
Payout - critical
500
Payout - high
250
Payout - medium
100
Payout - low
50
Swag details
No response
Testing policy URL
No response
Response SLA days
No response
Disclosure timeline days
No response
Legal terms URL
No response
Hall of fame URL
No response
Reporting URL
No response
PGP key URL
No response
Preferred languages
No response
Standards
No response
Confirmation
Company
codingame.com
Program URL
https://www.codingame.com/work/vulnerability-disclosure-policy/
Contact
No response
Description
No response
Rewards
Program type
bounty
Status
active
Safe harbor
No response
Allows disclosure
true
Domains
Accepted targets are codingame.com, codingame.eu, codingame-app.com and all their existing subdomains, with the exception of metabase.codingame.com.
Structured scope
No response
Out of scope
Our basic principle for this program : we consider as a valid vulnerability, only those that can reasonably lead to : data leak, credential leak, undue data modification or deletion, real and reproducible impact on performance / availability. A few low level issues of which impact can be questioned may also be out of scope purposely (due to risk VS benefit considerations).
Excluded methods
Requires account
No response
Minimum payout
50
Maximum payout
500
Currency
USD
Payout - critical
500
Payout - high
250
Payout - medium
100
Payout - low
50
Swag details
No response
Testing policy URL
No response
Response SLA days
No response
Disclosure timeline days
No response
Legal terms URL
No response
Hall of fame URL
No response
Reporting URL
No response
PGP key URL
No response
Preferred languages
No response
Standards
No response
Confirmation