Security is our top priority. Gocommex crypto exchange cares about every user’s safety. Therefore, we encourage the discovery of vulnerabilities on the exchange and reward their finding.
We impose no maximum limit on reward amounts and may increase the reward depending on the severity of the vulnerability. You’re more likely to receive a higher reward if you demonstrate how the vulnerability can be used to cause maximum damage.
Here is a list of example rewards for discovered vulnerabilities:
Remote code execution
$5000
Manipulation of user balances
$3000
XSS/CSRF/Clickjacking affecting user balance/trading/exchange/deposit actions
$2000
Theft of information related to passwords/API keys/personal data
$2000
Partial authentication bypass
$1500
Other vulnerabilities that may lead to financial loss or data leakage
$500
Other CSRF (excluding logout CSRF)
$500
No rewards will be issued for DDoS, Self-XSS, Spam, or Social engineering attacks.
To report it, send us an email; we will contact you as soon as possible and resolve the issue.
Contact Support Submit vulnerability to Security