Jupiter
jup.ag
Solana DEX aggregator. Full perimeter — frontend, routing, wallet surfaces, APIs.
$5,000 / Critical View Program →
Active Platform
Curated Bug Bounty Programs
Verified, high-impact bounty pages for security researchers. Every program pays $5,000 USD per validated critical with full-scope coverage and mandatory kill-chain reporting.
40Programs
$5KPer Critical
FullScope
All Programs
Jito
jito.network
Solana MEV infrastructure. All Jito-maintained systems in scope.
$5,000 / Critical View Program →JVZ
JVZoo
jvzoo.com
Digital product marketplace. Affiliate tracking, vendor dashboards, payment flows. $5K critical, $10K+ special bounty for DB extraction.
$5,000 / Critical View Program →LJV
LaunchpadJV
launchpadjv.com
Product launch platform. JV registration, checkout flows, affiliate commissions. $5K critical, $10K+ special bounty for DB extraction.
$5,000 / Critical View Program →PKS
PayKickstart
paykickstart.com
All-in-one shopping cart & affiliate management. Checkout, subscriptions, CRM, API integrations. $5K critical, $10K+ special bounty for DB extraction.
$5,000 / Critical View Program →
SellApp
sell.app
Commerce platform. APIs, storefront, embed checkout, webhooks.
$5,000 / Critical View Program →
SellAuth
sellauth.com
Identity & licensing. Auth, OAuth, sessions, integrations.
$5,000 / Critical View Program →
BiteCo
biteco.one
Platform services. Full BiteCo-operated perimeter in scope.
$5,000 / Critical View Program →
BitFix
bitfix.pro
Crypto exchange. Trading APIs, custody, withdrawals, admin consoles.
$5,000 / Critical View Program →
Dex
dex.fo
DEX frontend & routing. Quotes, wallet connect, indexers.
$5,000 / Critical View Program →
AmlGroup
amlgroup.top
Exchange / mixer. Pool accounting, payout routing, custody.
$5,000 / Critical View Program →
Blexch
b1exch.to
Crypto exchange. Spot UI, REST + WebSocket APIs, custody.
$5,000 / Critical View Program →
Motomix
motomix.cc
Mixer / exchange. Treasury integrity, privacy-set bookkeeping.
$5,000 / Critical View Program →
TV-Hub
tv-hub.org
Crypto trading signals & automation. API key theft, trade execution bypass, signal manipulation, DB access.
$5,000 / Critical View Program →
AIQuant
aiquant.tools
AI-powered crypto quant trading. Model manipulation, fund theft, DB exploits, admin access — full perimeter.
$5,000 / Critical View Program →
Bitdo
bitdo.ai
Chinese crypto trading & AI signals. API key theft, DB access, admin takeover, signal manipulation — $5K critical.
$5,000 / Critical View Program →M123
Mobil123
mobil123.com
Indonesia car marketplace. Fraud, theft, admin access, user DB leaks.
$5,000 / Critical View Program →IMI
IndomobilIndo
indomobilindo.com
Car sales landing page. Fraud, theft, admin access, user DB leaks.
$5,000 / Critical View Program →
ETZ Swap
etz-swap.com
Crypto swap / exchange. Routing, wallet flows, bridge hooks.
$5,000 / Critical View Program →
MT Exchange
mt.exchange
Crypto exchange. Trading UIs, REST + WebSocket, deposit/withdraw.
$5,000 / Critical View Program →
Upbit ID
id.upbit.com
Indonesian CEX. Web, APIs, trading, custody — full perimeter.
$5,000 / Critical View Program →
Wielton
wielton.com.pl
Special vehicles & semi-trailers. Configurators, dealer portal.
$5,000 / Critical View Program →ALT5
ALT5 Sigma
alt5sigma.com
Crypto exchange & trading. Full CEX surface, custody, APIs.
$5,000 / Critical View Program →MAYA
MAYA UM
maya.um.edu.my
University student portal & LMS. Auth, APIs, academic infra.
$5,000 / Critical View Program →CBA
Commbank
commbank.com.au
Commonwealth Bank. NetBank, app, CommSec, APIs, cards.
$5,000 / Critical View Program →UKM
UKM
join.ukm.my
Universiti Kebangsaan Malaysia. Full institutional scope — web, apps, APIs, infra, SSO, payment, IoT.
Up to $5,000 / Critical View Program →
UTM Space
space.utm.my
Universiti Teknologi Malaysia. Student portal, LMS, SSO, APIs, payments, full institutional scope.
$5,000 / Critical View Program →
UPM Study Portal
study.upm.edu.my
Universiti Putra Malaysia. Student portal, LMS, SSO, APIs, payments, full institutional scope.
$5,000 / Critical View Program →
UTAR Edu Portal
utar.edu.my
Universiti Tunku Abdul Rahman. Student portal, admin panels, LMS, databases, APIs, SSO, payments — full institutional scope.
$5,000 / Critical View Program →
Tiki
tiki.vn
Vietnam e-commerce marketplace. Web, mobile, APIs, admin panels, databases — database access is primary target.
$5,000 / Critical View Program →
9YYL0 Casino
h5.9yyl0.com
Chinese online casino platform. Admin access, database breaching, game APIs, payment pipelines, full perimeter.
$5,000 / Critical View Program →
TAR UMT Portal
tarc.edu.my
Tunku Abdul Rahman University of Management and Technology. Student portal, admin panels, LMS, databases, APIs, SSO, payments — full institutional scope.
$5,000 / Critical View Program →TA
TradeAdapter
tradeadapter.com
Crypto trading optimizer. Fund theft, database exploits, admin access — the three core bounty targets.
$5,000 / Critical View Program →
HalalMM
halalmm.com
Crypto middleman & escrow platform. Escrow theft, unauthorized release, dispute manipulation.
$5,000 / Critical View Program →
ZenLand
zen.land
P2P crypto marketplace & escrow. Theft, unauthorized release, dispute manipulation.
$5,000 / Critical View Program →
MidMan
midman.io
Crypto middleman & escrow service. Deposit theft, release bypass, dispute tampering.
$5,000 / Critical View Program →
LocalCoinSwap
localcoinswap.com
P2P crypto exchange with escrow. Fund theft, release races, admin compromise.
$5,000 / Critical View Program →
HodlHodl
hodlhodl.com
P2P Bitcoin exchange with multisig escrow. Key theft, signature bypass, dispute fraud.
$5,000 / Critical View Program →
Bitsgap
bitsgap.com
Crypto trading bots & exchange aggregator. Funds theft, DB access, admin access — full perimeter.
$5,000 / Critical View Program →
ITL996
itl996.com
Chinese online casino. Admin access priority, payment rails, game manipulation — full perimeter.
$5,000 / Critical View Program →
E-Commerce Programs
PlyDirect
plydirect.co.uk
UK e-commerce for plywood & building supplies. Admin access, shell/RCE, XSS, file upload, DB extraction.
$5,000 / Critical View Program →
Roofing Tools
roofing-tools.com
US e-commerce for roofing supplies & tools. Admin access, shell/RCE, XSS, file upload, DB extraction.
$5,000 / Critical View Program →
AFE Power
afepower.com
US e-commerce for auto performance parts. Admin access, shell/RCE, XSS, file upload, DB extraction.
$5,000 / Critical View Program →
Acorn MFG
acornmfg.com
US manufacturing & industrial e-commerce. Admin access, shell/RCE, XSS, file upload, DB extraction.
$5,000 / Critical View Program →
247 Blinds
247blinds.co.uk
UK e-commerce for blinds, curtains & shutters. Admin access, shell/RCE, XSS, file upload, DB extraction.
$5,000 / Critical View Program →
A4Tech
a4tech.ua
Ukrainian e-commerce for computer peripherals. Admin access, shell/RCE, XSS, file upload, DB extraction.
$5,000 / Critical View Program →