Banner object (1)

Hack and Take the Cash !

790 bounties in database
  Back Link to program      
06/08/2019
Squid Cache (IBB) logo
Thanks
Gift
Hall of Fame
Reward

Reward

100 $ 

In Scope

Scope Type Scope Name
web_application https://github.com/squid-cache/squid

Squid Cache (IBB)

Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. It reduces bandwidth and improves response times by caching and reusing frequently-requested web pages. It provides content delivery services for some of the largest internet service providers and sites on the web, making it an undeniably critical piece of internet infrastructure. These bounties are our way of saying "Thanks" to the security researchers who take up this challenge.

Bounty Qualification

The project maintainers have final decision on which issues constitute security vulnerabilities. The Panel __will respect their decision, and we ask that you do as well. Our rewards are tied to the severity level as determined by the project.

The project maintainers have final decision on which issues constitute security vulnerabilities. The Panel will respect their decision, and we ask that you do as well.

Only versions currently supported by the upstream project are eligible. Please verify your issue is present in a current release before submission.

Reports submitted to the upstream project before January 9, 2019, are not eligible.

It's important to keep in mind that not all submissions will qualify for a bounty, and that the decision to award a bounty is entirely at the discretion of the Panel.

Submission Process

  • Disclose a previously unknown security vulnerability directly to the project maintainers __.
  • Follow the disclosure process established by the project maintainers.
  • Clearly demonstrate the security vulnerability. Respect the time of the project volunteers as they cannot invest significant effort into incomplete reports. Low-quality reports may be disqualified.
  • Once a public security advisory has been issued, please submit a report here. You must not send us the details of the vulnerability until it has been validated, accepted, and publicly disclosed by the project maintainers.

FireBounty © 2015-2019

Legal notices