Bug Bounty | CSGOFAST

Welcome to the CSGOFAST bug bounty program.
The main idea of this program is to give our users opportunity to safely use any of our services without thinking that their private information could be revealed or that they could be scammed.
We are handling our users data securely, including transmitting it via modern cryptography.
To make our services even more secure, we decided to start the public bug bounty program.

Submit vulnerability

Reward guidelines

Vulnerability types

Potential reward *

XSS or CSRF vulnerabilities with the significant impact

◎ 500+

Clickjacking

◎ 100+

Authorization or authentication bypass

◎ 500+

Vulnerabilities in the business logic of games, giving an advantage over other players

◎ 100 - ◎ 5,000

Vulnerability in the microservice of financial transactions, allowing to receive money

◎ 100 - ◎ 5,000

Errors in the microservice of financial transactions which leads to the loss of money

◎ 100 - ◎ 5,000

Remote Code Execution

◎ 1,000+

SQL Injection

◎ 500+

Account stealing without user-interaction

◎ 500

Any deanonymization of users private data like IP, telephone number etc.

◎ 500+

* Potential rewards are being calculated on the most common bugs and bounty’s for them. The total bounty amount can be changed depending on the severity of the vulnerability found.

A few tips to describe the vulnerability found:
- Place one bug report on one bug.
in case you find several bugs - separate them into separate reports.
- Explain in detail how dangerous you consider the vulnerability.
- Describe the detailed steps for reproducing a bug.
in this way, it will be easier for us to find the vulnerability, to rate it and fix it, and it will be faster for you to get a well-deserved reward.