-3 upvotes, 1 direct replies (showing 1)
View submission: Announcing Reddit’s Public Bug Bounty Program Launch
Like I need to report 12 massive security weaknesses. I want to send the info through Reddit, but I want to get paid on hackerone.
Comment by savageronald at 15/04/2021 at 03:27 UTC
6 upvotes, 1 direct replies
Send them individually through HackerOne - bounties are paid individually (by vulnerability) - Reddit is giving people a worthless trophy for reporting it through them, get paid brother/sister
Edit: unless it’s a bunch of examples of the same vuln- then either way it’s one. I would caution that to get paid you need to prove it with a POC so be prepared. And if it’s something super obscure like using IE 6 allows XSS or something that’s not gonna fly