Superb bug bounty program

Are you a security researcher Are you a security researcher who found a vulnerability in Superb's platform? We want to hear from you. If your identified vulnerability falls within the scope of our bounty program, you may be eligible for a payout based on the severity of your finding.

The Superb Bounty Program adheres to the Bugcrowd Vulnerability Rating Taxonomy for the prioritization and rating of findings.
Get in touch

PAYOUT


Priority        Payout

P1                    $250*

P2                    $125*

P3                    $50*

P4                    $25*

*Payout will be in the form of an Amazon gift card at the values listed above.


TARGETS


In Scope:

  • api.superbexperience.com
  • auth.superbexperience.com
  • partner.superbexperience.com
  • backoffice.superbexperience.com
  • pos.superbexperience.com

Out of Scope:

  • www.superbexperience.com
  • Any *.superbexperience.com subdomain not explicitly listed above


OUT OF SCOPE VULNERABILITIES

  • Denial of service attacks
  • Social engineering
  • Lack of rate limiting
  • Brute-force attacks


CODE OF CONDUCT

  • Demonstrate the vulnerability with a clear, step-by-step write-up or video.
  • Show that the issue constitutes a genuine vulnerability, not merely a suboptimal practice.
  • Denial of service, spam, or phishing attacks are considered abusive and are out of scope.
  • Do not exfiltrate Superb customer or employee data under any circumstances. If you believe this is possible, or have done so inadvertently, contact us immediately. We will work with you to assess the full impact and reward you appropriately.
Lingua
App Store
Piattaforma
PrenotazioniGestionale di cassaPagamentiCarte regaloIl Guest MarketingAsportoIntegrazioni
I clienti
AccediSupportoCentro assistenzaShop
Risorse
PrezziPerché Superb?Blog
Azienda
CarrieraInformativa sulla privacyTermini di servizio
Linkedin
Facebook
Instagram
Youtube
Spotify
Podcast Apple
Inizia gratis
4.7 Trustpilot score