Banner object (1)

Hack and Take the Cash !

844 bounties in database
  Back Link to program      
06/09/2016
Ruby logo
Thanks
Gift
Hall of Fame
Reward

Reward

500 $ 

Ruby

This bounty program is for security issues in the Ruby programming language, neither websites (including *.ruby-lang.org) nor third party applications. Please submit issues that are regarding the Ruby programming language. You may also submit website issues, but in principle, they are outside the scope of the bounty program.

Documentation on Ruby can be found here __.

Internet Bug Bounty Qualification

Only vulnerabilities that demonstrate security impact to the system's integrity or confidentiality are eligible for a bounty - typically Arbitrary Code Execution or equivalent impact. While we encourage you to submit all potential issues, lower severity issues are not eligible for bounty at this time.

Impact

Critical Demonstrate that remote exploitation of this bug can be easily, actively, and reliably achieved.
High Demonstrate that remote exploitation of this bug is very likely (e.g. good control a register).
Medium Demonstrate the presence of a security bug with probable remote exploitation potential.

The project maintainers have final decision on which issues constitute security vulnerabilities. The Internet Bug Bounty Panel __will respect their decision, and we ask that you do as well. It's important to keep in mind that not all submissions will qualify for a bounty, and that the decision to award a bounty is entirely at the discretion of the Panel.

Safe Harbor

Any activities conducted in a manner consistent with this policy will be considered authorized conduct and we will not initiate legal action against you. If legal action is initiated by a third party against you in connection with activities conducted under this policy, we will take steps to make it known that your actions were conducted in compliance with this policy.

In Scope

Scope Type Scope Name
web_application

https://github.com/ruby/ruby

Out of Scope

Scope Type Scope Name
web_application

*.ruby-lang.org


The public program Ruby on the platform Hackerone has been updated on 2019-11-25, The lowest reward is 500 $.

FireBounty © 2015-2019

Legal notices