|
|
|
|
|
|
by jsploit
2118 days ago
|
|
|
CVSS being used as a basis for bounty payments is certainly evidence that it is taken seriously. Of course there are details that have to be factored in after that calculation, since CVSS is simplified for general usage. I'm not aware of any programs on HackerOne that don't follow this practice, so it's not "super uncommon". |
|
|