Platform Global Intelligence Integration Affiliate Plans Docs News Contact Us Bug Bounty
Sign in Get started

Bug Bounty Program

Help us keep AuraGuardian secure. Report vulnerabilities responsibly and get recognized in our Hall of Fame.

Submit a Report Hall of Fame
Currently Recognition-Only Researchers are recognized in our Hall of Fame. Monetary rewards will be introduced as a paid program in a future update.

In-Scope Vulnerabilities

We accept reports for the following vulnerability categories on AuraGuardian production systems.

Injection

critical

SQL injection, command injection, LDAP injection, and other server-side injection flaws.

Authentication Bypass

critical

Bypassing login, 2FA, session management, or privilege escalation vulnerabilities.

XSS / Client-side

high

Stored and reflected cross-site scripting, DOM-based XSS, and HTML injection.

SSRF

high

Server-Side Request Forgery allowing access to internal services or metadata endpoints.

Data Exposure

high

Unintended exposure of sensitive user data, API keys, credentials, or internal configurations.

RCE

critical

Remote Code Execution via file upload, deserialization, template injection, or eval flaws.

Out of Scope

  • Social engineering / phishing attacks
  • Denial of service (DoS / DDoS) attacks
  • Vulnerabilities in third-party services
  • Issues requiring physical access to a device
  • Clickjacking on pages with no sensitive actions
  • Missing security headers without demonstrable impact
  • Rate limiting issues on non-sensitive endpoints

Rules of Engagement

Please follow these guidelines for responsible disclosure.

Do not access, modify, or delete data belonging to other users.
Do not perform actions that could negatively impact other users or system availability.
Test only on accounts you own. Create a free account for testing.
Report vulnerabilities promptly and provide sufficient detail to reproduce.
Allow us reasonable time to triage and remediate before any public disclosure.
Do not use automated scanners that generate excessive traffic.
Act in good faith. All testing must comply with applicable laws.

Hall of Fame

Security researchers who have helped make AuraGuardian safer.

0 Researchers recognized
0 Vulnerabilities resolved
Your name could be here

Be the first to be recognized

Find a valid vulnerability in AuraGuardian and earn a permanent place in our Hall of Fame. Every report helps secure the entire network.

Submit a Report

Submit a Vulnerability

Found something? Let us know. All reports are reviewed by our security team.

Minimum 50 characters.