Submit a report
Last updated
Last updated
Please remember, that disclosing any bugs found on HackenProof’s Programs is prohibited without approval. For more details, please see the .
Once you log into your account, navigate to the "Bounties" section to view the active bug bounty programs. Browse through the list to find a program that matches your expertise. Each program page includes detailed information about its scope, rules, and reward structure. Carefully read the program's scope to understand which assets are in-scope and out-of-scope. Additionally, familiarize yourself with the program rules and disclosure guidelines to ensure compliance.
To submit a report, please follow these steps:
Within the program's page, click the 'Submit report' button.
Provide a short description of the vulnerability and the affected asset in the 'Vulnerability title' field.
Select the vulnerability target from the drop-down list.
Select the type of vulnerability category you have discovered.
Choose a severity level or calculate it using the CVSSv3 calculator.
Provide detailed information about the vulnerability in the 'Vulnerability details' field.
Please provide a clear and logical explanation of your vulnerability in the 'Validation Steps' field.
Attach PoC (video, screenshot, logs), which may help to understand the vulnerability more clearly.
As soon as you submit a report you can follow the status of it in your dashboard account:
Note: Remember that you can still change your report within the first 5 minutes after submitting it.
Fill out the report form with accurate and detailed information (check out our guide on how to ), including: