We recognize the important role of security researchers in helping keep our community safe and offer a bug bounty program to reward responsible disclosures.
Please add all necessary details and a Proof of Concept (PoC) when reporting a vulnerability. It helps if you describe the steps needed to reproduce the vulnerability, the expected result, and the actual result. This will expedite our investigation of the report and therefore also our response time.
You can responsibly disclose security vulnerabilities to Grailed via security@grailed.com. Note that this email address is for software security researchers only. If you have a question about your own account you should visit our help center or contact us through our support form.
How do we evaluate security incidents?
How do we determine bounties for responsible disclosures?
Based on the CVSS score, we use the following table to determine bounties:
Min/Max |
Critical
(CVSS 9.0-10.0)
|
High
(CVSS 7.0 - 8.9)
|
Medium
(CVSS 4.0 - 6.9)
|
Low
(CVSS 0.0 - 3.9)
|
Minimum |
$1,000 |
$500 |
$250 |
$0 |
Maximum |
$3,000 |
$1,000 |
$500 |
$200 |
History of Rewarded Bounties
Thank you to all the security researchers who have responsibly disclosed vulnerabilities:
Date
|
CVSS Range
|
Bounty Paid
|
10/17/23
|
Low (0.0 - 3.9)
|
$50
|
10/09/23
|
Low (0.0 - 3.9)
|
$100
|
9/29/23
|
Low (0.0 - 3.9)
|
$50
|
6/30/2023
|
Low (0.0 -3.9)
|
$100
|
1/20/2023
|
Low (0.0 - 3.9)
|
$50
|
6/17/2022
|
Low (0.0 - 3.9)
|
$50
|
05/23/2022
|
Low (0.0 - 3.9)
|
$50
|
03/03/2022
|
Low (0.0 - 3.9)
|
$100
|
2/17/2022
|
Low (0.0 - 3.9)
|
$50
|
12/03/2021
|
Medium (4.0 - 6.9)
|
$250
|
09/22/2021
|
Low (0.0 - 3.9)
|
$50
|
09/01/2021
|
Low (0.0 - 3.9)
|
$200
|
08/28/2021
|
Medium (4.0 - 6.9)
|
$250
|
07/19/21
|
Medium (4.0 - 6.9)
|
$250
|
07/07/21
|
Low (0.0 - 3.9)
|
$50
|
06/28/21
|
Medium (4.0 - 6.9)
|
$250
|
06/17/21
|
Medium (4.0 - 6.9)
|
$400
|
06/07/21
|
Medium (4.0 - 6.9)
|
$300
|
06/03/21
|
Low (0.0 - 3.9)
|
$50
|
06/01/21
|
Medium (4.0 - 6.9)
|
$250
|
05/03/21
|
Low (0.0 - 3.9)
|
$100
|
04/23/21
|
Low (0.0 - 3.9)
|
$50
|
04/23/21
|
Low (0.0 - 3.9)
|
$50
|
04/08/21
|
Low (0.0 - 3.9)
|
$50
|
04/05/21
|
Medium (4.0 - 6.9)
|
$250
|
04/02/21
|
Low (0.0 - 3.9)
|
$50
|
03/09/21
|
Low (0.0 - 3.9)
|
$100
|
03/04/21
|
Low (0.0 - 3.9)
|
$50
|
02/02/21
|
Low (0.0 - 3.9)
|
$50
|
01/29/21
|
Low (0.0 - 3.9)
|
$50
|
12/21/20
|
Low (0.0 - 3.9)
|
$100
|
12/03/20
|
Critical (9.0 - 10.0)
|
$3,000
|
12/02/20
|
Medium (4.0 - 6.9)
|
$300
|
12/02/20
|
High (7.0 - 8.9)
|
$700
|
01/20/20
|
Low (0.0 - 3.9)
|
$200
|
07/12/18
|
Low (0.0 - 3.9)
|
$100
|
04/18/18
|
High (7.0 - 8.9)
|
$500
|
Comments
0 comments
Please sign in to leave a comment.