Powered by:
Allows bounty splitting:
Average time to first program response:
Average time to bounty awarded null:
Average time to report resolved:
Handle unikrn
Managed program: false
Name: Unikrn
Offers bounties: true
Offers swag: false
Response efficiency percentage: 33
Submission state: open
Url: https://hackerone.com/unikrn
Website: https://unikrn.com
In scope:
Asset identifier: affiliates.unikrn.comAsset type: URLAvailability requirement: lowConfidentiality requirement: lowEligible for bounty: trueEligible for submissions: trueInstruction: Third party affiliate platformIntegrity requirements: mediumMax severity: high
Asset identifier: api-w.unikrnb2b.comAsset type: URLAvailability requirement: highConfidentiality requirement: highEligible for bounty: trueEligible for submissions: trueInstruction: This is part of our B2B offering
[start test session][1]
[1]: https://api-w.unikrnb2b.com/apiv1/unk/start/sport_id=85 Integrity requirements: highMax severity: critical
Asset identifier: api.unikrn.comAsset type: URLAvailability requirement: highConfidentiality requirement: highEligible for bounty: trueEligible for submissions: trueInstruction: B2C Data Endpoints Integrity requirements: highMax severity: critical
Asset identifier: auctionbot.unikrn.comAsset type: URLAvailability requirement: mediumConfidentiality requirement: lowEligible for bounty: trueEligible for submissions: trueInstruction: WebsocketIntegrity requirements: mediumMax severity: critical
Asset identifier: auth.unikrn.comAsset type: URLAvailability requirement: lowConfidentiality requirement: highEligible for bounty: trueEligible for submissions: trueInstruction: Auth Services - OAuth2Integrity requirements: highMax severity: critical
Asset identifier: connekt-api.unikrn.comAsset type: URLAvailability requirement: lowConfidentiality requirement: mediumEligible for bounty: trueEligible for submissions: trueInstruction: Connekt/Umode ApisIntegrity requirements: mediumMax severity: critical
Asset identifier: crm.unikrn.comAsset type: URLAvailability requirement: highConfidentiality requirement: mediumEligible for bounty: trueEligible for submissions: trueInstruction: Admin only login CRM page based on [Mautic][1]
[1]: https://github.com/mautic/mauticIntegrity requirements: mediumMax severity: critical
Asset identifier: jet-api.unikrn.comAsset type: URLAvailability requirement: mediumConfidentiality requirement: highEligible for bounty: trueEligible for submissions: trueInstruction: Account and Betting ApiIntegrity requirements: highMax severity: critical
Asset identifier: news.unikrn.comAsset type: URLAvailability requirement: mediumConfidentiality requirement: lowEligible for bounty: trueEligible for submissions: trueInstruction: Specific news portal siteIntegrity requirements: mediumMax severity: critical
Asset identifier: unikrn.comAsset type: URLAvailability requirement: highConfidentiality requirement: highEligible for bounty: trueEligible for submissions: trueInstruction: Main B2C page, and API endpoint(s)Integrity requirements: highMax severity: critical
