Do you know friends, now you can make money by Reporting Vulnerability On websites like paypal, facebook, google!!! This is news for all friends specially researchers, hackers and developers.
You can earn lot of money by searching vulnerabilities in sites like paypal, facebook, google. So rathers than defacing a website or any harm, you have sumbit bug to website's admin and you'll Get reward for such errors.
Reporting Vulnerability Report on Facebook
If you believe you've found a security vulnerability on Facebook, then Click here to Report a Security Vulnerability.Responsible Disclosure Policy of Facebook :
"If you give us a reasonable time to respond to your report before making any information public and make a good faith effort to avoid privacy violations, destruction of data and interruption or degradation of our service during your research, we will not bring any lawsuit against you or ask law enforcement to investigate you."
You can sumbit following types of bugs to facebook
- Cross-Site Scripting (XSS)
- Cross-Site Request Forgery (CSRF/XSRF)
- Remote Code Injection
- Broken Authentication (including Facebook OAuth bugs)
- Circumvention of our Platform permission model
- A bug that allows the viewing of private user data
Reporting Vulnerability Report on Paypal
Responsible Disclosure Policy of PayPal:"To encourage responsible disclosure, we commit that - if we conclude that a disclosure respects and meets all the guidelines [outlined in the policy] - we will not bring a private action or refer a matter for public inquiry."
You can send your report to sitesecurity@paypal.com.
You can sumbit following types of bugs and vulnerabilities report to PayPal:
- Cross-site scripting
- Cross-site request forgery
- SQL Injection
- Authentication ByPass.
For more information visit official paypal website
Reporting Vulnerability Report on Google !
Vulnerabilities and Bugs that you can submit to Google vulnerability reward program:- google.com
- youtube.com
- blogger.com
- orkut.com
- Cross-site scripting
- Cross-site request forgery
- Cross-site script inclusion
- Flaws in authentication and authorization mechanisms
- Server-side code execution or command injection bugs.
Reward Amounts offer by Google:
| accounts.google.com | Other highly sensitive services [1] | Normal Google applications | Non-integrated acquisitions and other lower priority sites [2] | |
|---|---|---|---|---|
| Remote code execution | $20,000 | $20,000 | $20,000 | $5,000 |
| SQL injection or equivalent | $10,000 | $10,000 | $10,000 | $5,000 |
| Significant authentication bypass or information leak | $10,000 | $5,000 | $1,337 | $500 |
| Typical XSS | $3,133.7 | $1,337 | $500 | $100 |
| XSRF, XSSI, and other common web flaws |
$500 - $3,133.7
(depending on impact)
|
$500 - $1,337
(depending on impact) | $500 | $100 |
Happy hacking..........
Filed Under: MISCELLANEOUS
If you enjoyed this post and wish to be informed whenever a new post is published, then make sure you subscribe to my regular Email Updates.
Subscribe Now!
Do you need to know what your child is doing on the computer? Do you want to know what your loved ones or spouse or kids are doing on the computer? Do you need to monitor what your employees are doing during work hours? Are they working or playing?
Winspy Keylogger
is intended to help you in these kind of situations. It can show you exactly what is being done on the computer at any time.
Click Here To Download Winspy Keylogger
