Vulnerabilities are never limited to a set list. Any bug that escalates a user’s privileges or causes unexpected behavior with an impact to the integrity or confidentiality of our users’ data will be considered.
It is often the types of vulnerabilities we haven’t thought about that are the most interesting!
|1||5000 pts joernchen of Phenoelit GIT LFS code execution|
|2||2500 pts kyprizel Denial of service in babeld|
|3||1000 pts Rohit Dua Bypass organization paid plan billing validation|
|4||500 pts lionheartrox DLL hijacking in Git Large File Storage (LFS) installer|
|5||500 pts Rhys Elsmore Phishing vector on Markdown preview endpoint|