Gamerhash Bug Bounty Program: Securing Our Platform Together
At Gamerhash, we are committed to providing the highest quality services and prioritizing the security of our users. To achieve this goal, we have established the Gamerhash Bug Bounty Program, which encourages security professionals to collaborate with us in identifying and resolving any security-related issues in our platform.
Responsible Investigation and Disclosure
We expect security professionals participating in our program to adhere to the following principles of responsible investigation and disclosure:
- Focus on the items and URLs specified within the program's scope.
- Avoid violating the privacy of other users or targeting them, destroying data, or disrupting services.
- Target only your accounts when discovering bugs.
- Refrain from using DDOS attacks, spam, or social engineering techniques.
- Report the discovered bug exclusively to Gamerhash and not to any third party.
Rewards and Eligibility
Gamerhash values the safety of its users and appreciates the collaboration of security professionals. All submitted reports will be carefully analyzed by our team of experts. We encourage you to provide as much information as possible in your report, including potential consequences that could arise from exploiting the reported vulnerability.
Participants may qualify for a reward if they report security issues such as (but not limited to):
- Authentication or Authorization Bypass
- Cross-Site Scripting (XSS)
- Cross-Site Request Forgery (CSRF)
- Clickjacking
- Code Injection
- Remote Code Execution
- Local or Remote File Inclusion
- Privilege Escalation
- Leakage of Sensitive Data
- Unauthorized data access or manipulation
Reporting a Vulnerability
If you have identified a vulnerability, please send an email to security@gamerhash.com. Our team will promptly review the report and take appropriate measures to resolve the issue.