11.1 Program Scope
We invite researchers to test: fowcuzz.com, API endpoints, and our mobile apps.
Out of Scope: DoD/DDoS, Social Engineering, Third-party services.
11.2 Rewards
- Critical: $1,000 - $5,000 (RCE, SQLi)
- High: $500 - $1,000 (Privilege Escalation)
- Medium: $100 - $500 (Stored XSS)
- Low: $50 - $100 (Info Disclosure)
11.3 Reporting
Email reports to security@fowcuzz.app. Include steps to reproduce and PoC. We respond within 2 business days.
11.4 Safe Harbor
We will not take legal action against researchers acting in good faith and complying with this policy.