Banner object (1)

Hack and Take the Cash !

756 bounties in database
29/06/2017
WakaTime logo

WakaTime

In Scope

  • wakatime.com
  • api.wakatime.com

Out of Scope Vulnerabilities

Vulnerabilities below will be marked NA or Informative.

  • Logout CSRF
  • Session Fixation (We use session cookies and we like them http://bit.ly/2tw19Gd __)
  • Insufficient Session Expiration
  • Weak Password Policy (See http://bit.ly/2uFjwXt __)
  • Password Reuse (We allow any password, even passwords used previously)
  • CSRF Cookie Without 'HttpOnly' Flag
  • Beast Attack (Fixed in browsers not sever)
  • Username Enumeration
  • Software version disclosure
  • Denial of service
  • Spamming
  • Phishing
  • Social engineering

Please consolidate the same vulnerability reports when only the page/url/params changes.

View changes to this policy

Thanks
Gift
Hall of Fame
Reward


List your Bug Bounty for free immediately!

Contact us if you want more information.

FireBounty (c) 2015-2019