Vulnerability Reward Program - Rewards
Congratulations to everyone who discovered and submitted valid bugs through our CCBill Vulnerability Reward Program! We greatly appreciate the security researchers' efforts!
Congratulations again!
| Bug ID | Security Researcher | Disclosed Vulnerability | CVSS Rating | Payment Amount |
| 335 | Anish Rathore | SQL Injection/DoS | High | $500.00 |
| 322 | Neal Poole | Multiple XSS | Medium | $400.00 |
| 323 | Neal Poole | Multiple Reflected XSS | Medium | $400.00 |
| 333 | Cody Brocious (Daeken) | XSS | Medium | $400.00 |
| 335 | Cody Brocious (Daeken) | Improper Authorization | Medium | $400.00 |
| 336 | Cody Brocious (Daeken) | Cross-site request forgery | Medium | $400.00 |
| 337 | Cody Brocious (Daeken) | Reflected XSS and Cross-site request forgery | Medium | $400.00 |
| 338 | Cody Brocious (Daeken) | Reflected XSS and Cross-site request forgery | Medium | $400.00 |
| 339 | Cody Brocious (Daeken) | Improper Authorization | HIGH | $500.00 |
| 368 | Cody Brocious (Daeken) | XSS | Low | $300.00 |
| 353 | Cody Brocious (Daeken) | Reflected XSS | Medium | $400.00 |
| 355 | Cody Brocious (Daeken) | Improper Authorization | Low | $300.00 |
| 374 | Cody Brocious (Daeken) | Direct Object Reference | Low | $300.00 |
| 329 | Cody Brocious (Daeken) | Reflected XSS | Medium | $400.00 |
| 331 | Cody Brocious (Daeken) | Reflected XSS | Medium | $400.00 |
| 332 | Cody Brocious (Daeken) | Reflected XSS | Medium | $400.00 |
| 334 | Cody Brocious (Daeken) | Reflected XSS | Medium | $400.00 |
| 395 | Cody Brocious (Daeken) | XSS | Low | $300.00 |
| 396 | Cody Brocious (Daeken) | Incorrect Error Handling | Low | $300.00 |
| 397 | Cody Brocious (Daeken) | Reflected XSS | Low | $300.00 |
| 398 | Cody Brocious (Daeken) | XSS | Low | $300.00 |
| 399 | Cody Brocious (Daeken) | XSS | Low | $300.00 |
| 400 | Cody Brocious (Daeken) | XSS | Low | $300.00 |
| 401 | Cody Brocious (Daeken) | XSS | Low | $300.00 |
| 402 | Cody Brocious (Daeken) | XSS | Low | $300.00 |
| 403 | Cody Brocious (Daeken) | Improper Authorization | Medium | $400.00 |
| 404 | Cody Brocious (Daeken) | XSS | Low | $300.00 |
| 405 | Cody Brocious (Daeken) | XSS | Low | $300.00 |
| 406 | Cody Brocious (Daeken) | XSS | Low | $300.00 |
| 407 | Cody Brocious (Daeken) | XSS | Low | $300.00 |
| 408 | Cody Brocious (Daeken) | XSS | Low | $300.00 |
| 409 | Cody Brocious (Daeken) | XSS | Low | $300.00 |
| 410 | Cody Brocious (Daeken) | Improper Authorization | Medium | $400.00 |
| 411 | Cody Brocious (Daeken) | Improper Authorization | Medium | $400.00 |
| 412 | Chris Cross | Cross-site request forgery | Medium | $400.00 |
| 319 | Gary Suggett | Information Disclosure | Low | $300.00 |
| 318 | David Hoyt | XSS | Low | $300.00 |
| 318A | David Hoyt | XSS | Low | $300.00 |
| 429 | James Kettle | XSS | Low | $300.00 |
| 419 | James Kettle | XSS | Low | $300.00 |
| 371 | Szymon Gruszecki | CSRF + Persistent XSS | Medium | $400.00 |
| 372 | Szymon Gruszecki | Reflected Cross-Site | Low | $300.00 |
© 2013 CCBill, LLC. All rights reserved.
