Bounty amount varies on report’s severity and market prices for a particular type of applications. One widely used metric for evaluating the severity of a security vulnerability is the Common Vulnerability Scoring System, which HackenProof uses as well.

Did this answer your question?