WhiteBit Bug Bounty Program
Add to Watchlist
Added to Watchlist
Reward pool
Not set
USD
Expected profit
up to $10,000
up to $10,000
Max participants
∞
No limit
DropsEarn score
Neutral
Normal, Low Risks
Details
WhiteBIT is one of the largest crypto-to-fiat exchanges in Europe. WhiteBIT offers various products and tools to suit experienced traders and new market entrants.
To be able to receive a reward for finding a vulnerability, you must:
- Inform about the vulnerability: do not spread information about it, and give us enough time to fix the vulnerability.
- Make the necessary efforts: to avoid harm to the exchange and its users.
- Do not mislead: users and/or employees of the exchange during the search and elimination of vulnerabilities.
Rewards
WhiteBIT does not limit the maximum amount of rewards in any way and can increase the reward depending on the severity of the vulnerability. You are more likely to receive increased rewards if you show how vulnerability can be used to cause maximum harm.
Here is a list of approximate rewards for detecting vulnerabilities:
Remote code execution: $10,000
Manipulating user balances: $10,000
XSS/CSRF/Clickjacking affecting user balances/trading/exchange/deposits: $2,000
Stealing information related to passwords API keys /personal information: $2,000
Partial authentication bypass: $1,500
Other vulnerability with clear potential for financial or data loss: $500
Other CSRF (excluding logout CSRF): $500
Rewards for DDoS, Self-XSS, Spam and Social engineering attacks will NOT be granted.
You can familiarize yourself with the subject of verification and the rules of the Bug Bounty program in the Bug Bounty Policy.
Links
About
Crypto exchange WhiteBIT cares about the security of each user and encourages the search for vulnerabilities on the exchange and pays a reward for finding them.
TBA
Open
None