Banner object (1)

4217 policies in database
  Back Link to program      
TTC | Mobile logo
Hall of Fame


250 HKN 

TTC | Mobile

TTC Connect, a lightweight wallet designed specifically for TTC, it was used to receive and send TTC safely and easily!


In Scope

Target | Type | Severity | Reward

TTC Connect Wallet

| iOS | Critical | Bounty

TTC Connect

| Android | Critical | Bounty

TTC Connect APK

| Android | Critical | Bounty


Severity (CVSSv3) | Reward
Critical | 5000$
High | 2500$
Medium | 750$
Low | 250$

__Focus Area

In-Scope Vulnerabilities

We are interested in next vulnerabilities:

  • Remote code execution and stored XSS
  • Database vulnerability, SQLi
  • Privilege escalation (both vertical and horizontal)
  • Data breach
  • Authentication bypass
  • Obtaining sensitive information
  • IDOR/authorization vulnerabilities resulting in exposure of personal data.
  • Password attacks
  • Access to source code
  • Shell inclusion
  • Server Side Request Forgery (SSRF)
  • Remote code execution: e.g. through a maliciously-crafted web-site or an email
  • Local privilege escalation: e.g. situations when App allows a non-privileged user
  • Other application to gain Administrator or System rights

!Note: Current version of application operates over HTTP.

__Program Rules

  • Avoid compromising any personal data, interruption or degradation of any service .
  • Don’t access or modify other user data, localize all tests to your accounts.
  • Don’t exploit any DoS/DDoS vulnerabilities, social engineering attacks or spam.
  • In case you find chain vulnerabilities we pay only for vulnerability with the highest severity.
  • Only the first valid bug is eligible for reward.
  • Don’t disclose publicly any vulnerability until you are granted permission to do so.

  • Don’t break any law and stay in the defined scope.

  • The existence or any details of this private program must not be communicated to anyone who is not a HackenProof Team or an authorized employee of this Company.
  • Comply with the rules of the program.
  • The rewards will be paid out in HKN based on the current price.

In Scope

Scope Type Scope Name

TTC Connect


TTC Connect APK


TTC Connect Wallet

On this program you get up to 5000.0 HKN for the most critical vulnerability.

FireBounty © 2015-2020

Legal notices