Security is a major priority at PlayerBay. Our internal team works hard to keep the marketplace safe, but we also know that independent security researchers can help identify issues before they affect users.
The PlayerBay Bug Bounty Program gives responsible white hat hackers and security researchers a way to report valid bugs, flaws, or vulnerabilities and potentially earn a reward.
Why the Bug Bounty Program Matters
PlayerBay’s platform continues to grow, and with more users, features, payments, listings, and infrastructure, security becomes even more important.
Our in-house security team helps protect the platform every day, but bug bounty reports allow researchers around the world to help improve PlayerBay’s security in a responsible way.
| Why It Helps | What It Protects |
|---|---|
| Find Issues Earlier | Valid reports can help us identify and fix problems before they affect users. |
| Improve Platform Security | Security research helps strengthen PlayerBay’s systems, accounts, payments, and marketplace tools. |
| Reward Responsible Research | Researchers may earn rewards for responsibly reporting bugs or vulnerabilities. |
| Protect Buyers and Sellers | A stronger platform helps keep transactions, accounts, and user activity safer. |
How the Bug Bounty Program Works
- You find something you believe may be a bug, flaw, or security vulnerability affecting PlayerBay.
- You report it to us by email at [email protected].
- Our team reviews the report and evaluates the impact on PlayerBay’s service, users, or security.
- If the report is valid and eligible, a reward may be issued to your PlayerBay balance based on severity and impact.
- Rewards may range from $10 for minor valid issues to over $5,000 for critical vulnerabilities.
What to Include in Your Report
A clear report helps our team verify and fix issues faster. When submitting a bug bounty report, include as much useful detail as possible.
| Report Detail | What to Provide |
|---|---|
| Summary | A short explanation of the bug or vulnerability you found. |
| Steps to Reproduce | Clear steps our team can follow to confirm the issue. |
| Impact | An explanation of what the issue could affect, such as accounts, payments, listings, user data, or platform security. |
| Proof of Concept | Screenshots, videos, request examples, or other safe evidence showing the issue. |
| Account Details | The PlayerBay account or test account used during your research, if applicable. |
Responsible Testing Rules
All security research must be performed responsibly. Do not access, modify, delete, download, or expose another user’s data. Only test in ways that avoid harming users, sellers, buyers, or PlayerBay services.
- Do not perform denial-of-service attacks, spam, or load testing.
- Do not attempt social engineering against users, sellers, support staff, or employees.
- Do not access or disclose private user data.
- Do not modify orders, balances, listings, accounts, or payment data that does not belong to you.
- Do not use destructive testing methods.
- Do not publicly disclose the issue before PlayerBay has reviewed and resolved it.
Reward Eligibility
Bug bounty rewards are based on the severity, impact, quality of the report, and whether the issue is valid, reproducible, and previously unknown to PlayerBay.
Not every bug or report will qualify for a reward. Reports that are unclear, duplicate, low impact, outside the program rules, or not related to PlayerBay security may not be eligible.
To submit a bug bounty report, email [email protected] with clear reproduction steps, impact details, and safe proof of concept evidence.
