Bug Bounties

Home Bargains

Powered by: 

Allows bounty splitting: 

Average time to first program response: 293

Average time to bounty awarded null: 

Average time to report resolved: 

Handle homebargains

Managed program: false

Name: Home Bargains

Offers bounties: true

Offers swag: false

Response efficiency percentage: 100

Submission state: open

Url: https://hackerone.com/homebargains

Website: https://home.bargains

In scope:

  • Asset identifier: hackerone-m1rtuq8orz.hbstaging.website
  • Asset type: URL
  • Availability requirement: medium
  • Confidentiality requirement: high
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: A new eCommerce website has been developed. Whilst the front end looks similar to our current site, the back end has been completely redesigned using a "No Server" type infrastructure. There is minimal code in place and as a result we hope to be immune from many of the classic web vulnerabilities. Please test all aspects of the listed site - https://hackerone-m1rtuq8orz.hbstaging.website/ You may create accounts You may place orders You may use test card details to settle orders (see https://stripe.com/docs/testing for test card information) Please do not use live card details as payment may not be refunded Please also follow the rules outlined in the main program notes. We welcome quality submissions, and will reward accordingly for any confirmed vulnerabilities.
  • Integrity requirements: high
  • Max severity: critical