The Bounty amount varies on the report’s severity and market prices for a particular type of application.
One widely used metric for evaluating the severity of a security vulnerability is the Common Vulnerability Scoring System, which HackenProof uses as well.