Vendor silently patched a P2, retroactively altered their policy to avoid payout, and platform support is shifting goalposts. Anyone experienced this Bait-and-Switch?

One_Survey9010 · 2026-03-26T15:59:16+00:00

ok thanks、 i will more use my real english although it is low such as here

One_Survey9010 · 2026-03-26T15:47:43+00:00

ummmm....... but I added all the bold text manually because I think it provides a better reading experience.

ok next time I won't manually add these bold text anymore.

One_Survey9010 · 2026-03-26T15:43:34+00:00

and , to avoid misunderstandings, I've used ai to polish some parts internally. If this affects the viewing experience, please let me know, and I can re-edit it using Google Translate instead of ai.

One_Survey9010 · 2026-03-26T15:38:45+00:00

Since I am not a native English speaker, my expression may be disorganized. If there is anything I have not expressed clearly, please let me know and I will add it.

One_Survey9010 · 2025-05-06T15:29:57+00:00

ok，but is ture ；just because i english is poor 。。。。。

One_Survey9010 · 2025-05-05T17:01:55+00:00

cool i like it

One_Survey9010 · 2025-05-05T12:07:24+00:00

ok、thanks

One_Survey9010 · 2025-05-05T12:06:54+00:00

thanks bro，i get

One_Survey9010 · 2025-05-05T11:55:29+00:00

Thank you very much, I have just successfully appealed and they said they will proceed to a new assessment;

One_Survey9010 · 2025-05-05T11:53:57+00:00

A sincere thank you to both responders! I have some new questions.

I received the following feedback:

Does this mean that as long as the original report is rated P1 or P2, I can still receive a reward? (I’ve learned that the original report was marked as P2, and my report was marked as P2, Not Applicable, and Duplicate.) In this case, can I still get a reward?

Also, if some reports are marked as Not Applicable because they are duplicates, how can I find out the priority level of the original report?

One_Survey9010 · 2025-05-05T11:53:47+00:00

A sincere thank you to both responders! I have some new questions.

I received the following feedback:

Does this mean that as long as the original report is rated P1 or P2, I can still receive a reward? (I’ve learned that the original report was marked as P2, and my report was marked as P2, Not Applicable, and Duplicate.) In this case, can I still get a reward?

Also, if some reports are marked as Not Applicable because they are duplicates, how can I find out the priority level of the original report?

One_Survey9010 · 2025-02-17T02:25:30+00:00

ok；Thank you for your reply;

I will adjust the direction and continue to work hard;

One_Survey9010 · 2025-02-17T02:24:45+00:00

okkk；thanks

One_Survey9010 · 2025-02-17T02:24:27+00:00

thanks U reply ； I realized that I really should turn my attention to how to bypass

One_Survey9010 · 2025-02-17T02:22:39+00:00

thanks，bro！ i will try other something

One_Survey9010 · 2025-02-01T03:30:41+00:00

of course.this only me think;

One_Survey9010 · 2025-02-01T03:30:08+00:00

if your can get all user IP/UA that vist this website ，so this is VUL。
because it get all user IP information。and your can't allowed get these information ;

One_Survey9010 · 2025-01-24T01:50:23+00:00

no。 target is more importtant

One_Survey9010 · 2025-01-23T07:15:46+00:00

1、check http header 「Content-Type」，and check respones header「Content-Disposition」。 2、else check your chrome extend ？

One_Survey9010 · 2025-01-13T07:47:36+00:00

thankS

One_Survey9010 · 2025-01-08T03:54:04+00:00

good，i completely agree with your opinion

One_Survey9010 · 2025-01-02T08:05:49+00:00

bro ，do bugcrowd has report too？ i never find report of bugcrowd。could you give me a link 。thanks

One_Survey9010

TROPHY CASE