Author

Topic: bitcointalk vulnerability (Read 345 times)

legendary
Activity: 1792
Merit: 1283
May 28, 2019, 08:05:46 AM
#9
Is that considered as 'off-topic' post?
Can I report that post of Sharon121212 to the moderator?

You can report any post you want, it doesn't mean it will be accepted though.

OP, definitely give an update on whether you've received the bounty.
Without disclosing the vulnerability of course Wink
legendary
Activity: 2758
Merit: 6830
May 28, 2019, 07:02:03 AM
#8
So the bounty is 1 ounce of gold, worth $1283.29 and paid as 0.1468BTC?
If he "finds the email address of user DefaultTrust and explain in detail how he did it", he gets 1 ounce of gold worth in BTC. That's based on what OP said about his vulnerability: "about emails & usernames";

But, he can get more based on a few factors found in the thread I linked above. Example: Root access from a regular user (8 ounces) related to a security flaw in non-PHP software used by the forum (150%) would give him 150% of 8 oz of gold = 12 oz.
legendary
Activity: 3290
Merit: 16489
Thick-Skinned Gang Leader and Golden Feather 2021
May 28, 2019, 06:57:27 AM
#7
- 1 XAU: Find the email address of user DefaultTrust and explain in detail how you did it.
So the bounty is 1 ounce of gold, worth $1283.29 and paid as 0.1468BTC?
global moderator
Activity: 3990
Merit: 2717
Join the world-leading crypto sportsbook NOW!
May 28, 2019, 06:11:22 AM
#6
- 1 XAU: Find the email address of user DefaultTrust and explain in detail how you did it.
legendary
Activity: 2506
Merit: 1394
May 28, 2019, 05:32:47 AM
#5
Still trying to figure the last part of your post @OP. If you meant would you be able to join a bounty after you must have shown your claimed discover. I don't think that's possible you don't have the needed rank or activities to join a bounty yet https://bitcointalksearch.org/topic/merit-new-rank-requirements-2818350

But after showing it if it's good then you can be awarded merit which you require.

I laughed out loud when I read this comment :') Completely wrong context, seems that the word bounty only has one meaning for most people on this forum.
Is that considered as 'off-topic' post?
Can I report that post of Sharon121212 to the moderator?

legendary
Activity: 1792
Merit: 1283
May 28, 2019, 03:48:52 AM
#4
Still trying to figure the last part of your post @OP. If you meant would you be able to join a bounty after you must have shown your claimed discover. I don't think that's possible you don't have the needed rank or activities to join a bounty yet https://bitcointalksearch.org/topic/merit-new-rank-requirements-2818350

But after showing it if it's good then you can be awarded merit which you require.


I laughed out loud when I read this comment :') Completely wrong context, seems that the word bounty only has one meaning for most people on this forum.

OP, definitely do send a pm to Theymos, if you can. Not sure if he'd read PM's from new members, so I'd make the topic of your PM very clear.
Is this a publicly known bug or is it a zero-day that you've found yourself?

Edit:

- 1 XAU: Find the email address of user DefaultTrust and explain in detail how you did it.

No idea how to find the actual email address though. Then again, if you indeed do have access to emails & usernames, you shouldn't have a problem with that Wink
hero member
Activity: 2002
Merit: 535
May 28, 2019, 12:17:10 AM
#3
hi , i have discovered some vulnerability in bitcointalk in simple machine code , about emails & usernames , would be any bounty if i show them ?

thanks
You can contact Theymos regarding that, send him a PM and see what he has to say about it or wait until he responds here and i am certain he will give you the bounty if it is a legit vulnerability.


Still trying to figure the last part of your post @OP. If you meant would you be able to join a bounty after you must have shown your claimed discover. I don't think that's possible you don't have the needed rank or activities to join a bounty yet https://bitcointalksearch.org/topic/merit-new-rank-requirements-2818350

But after showing it if it's good then you can be awarded merit which you require.

He is not talking about joining any bounty mate, he wants to help the forum out and help with solving the vulnerability and if he does that is he eligible for a bounty if he reveals those vulnerability as he claims.
legendary
Activity: 2758
Merit: 6830
May 27, 2019, 08:23:11 PM
#2
Possibly. It depends on what the vulnerability is and what it does.

Everything you need to know can be found here: Security bounties
newbie
Activity: 10
Merit: 0
May 27, 2019, 08:19:47 PM
#1
hi , i have discovered some vulnerability in bitcointalk in simple machine code , about emails & usernames , would be any bounty if i show them ?

thanks
Jump to: