For the initial prioritization/rating of findings, this program will use theBugcrowd Vulnerability Rating Taxonomy. However, it is important to note that in some cases a vulnerability priority will be modified due to its likelihood or impact. In any instance where an issue is downgraded, a full, detailed explanation will be provided to the researcher - along with the opportunity to appeal, and make a case for a higher priority.
This program only awards points for VRT based submissions.
This program follows Bugcrowd’s standard disclosure terms.
Firebounty have crawled on 2021-02-03 the program Memsource Vulnerability Disclosure Program on the platform Bugcrowd.