|
|
|
|
|
|
by tantalor
4574 days ago
|
|
|
The rules seem to allow a reward for this kind of vulnerability, What’s up with other vulnerabilities? ... we will consider if they are eligible for a bounty or not What is the bounty? ... we will increase it at our discretion for distinctly creative or severe bugs Prezi explicitly designed the rules to be flexible, so they could give the award in this case, but decided not to because "intra.prezi.com is out of scope". The rules about scope appear to exclude vulnerabilities in 3rd-party services such as AWS, not backends, e.g., the backends for our iPad and desktop applications are in scope http://prezi.com/bugbounty/ |
|
|