Atlassian uses cookies to improve your browsing experience, perform analytics and research, and conduct advertising. Accept all cookies to indicate that you agree to our use of cookies on your device. Atlassian cookies and tracking notice, (opens new window)
Help Center
  1. Help Center
  2. GK Bug Bounty Program

Vulnerability

Required fields are marked with an asterisk*
P3 - Moderate

Select the Target this Vulnerability applies to. Note that Targets not explicitly in-scope may not be eligible for acceptance

Tell us the details about thi vulnerability, along with Business Impact, and suggested remediation steps.

Powered by Jira Service Management
{"xsrfToken":"b35f6b07d37aff7dd076cd292cd2811d79d5121b_lout","branding":{"id":"7","key":"bounty","name":"GK Bug Bounty Program","portalBaseUrl":"/servicedesk/customer/portal/7"},"helpCenterBranding":{"logoId":"","isLogoAvailable":false,"helpCenterTitle":"Welcome to the Help Center","sharedPortalName":"Help Center","translations":{"en-US":{"helpCenterTitle":"Welcome to the Help Center","sharedPortalName":"Help Center","localeDisplayName":"English (United States)"}},"canEditAnnouncement":false,"siteDefaultLanguageTag":"en-US","userLanguageTag":"en-US","portalThemeColor":"#0074e0","helpCenterTitleColor":"#ffffff","useDefaultBanner":true,"isBannerAvailable":false,"hasTopBarBeenSplit":false},"portal":{"id":"7","key":"bounty","projectId":10479,"serviceDeskId":7,"name":"GK Bug Bounty Program","description":"<p>Please Note: The GitKraken Bug Bounty Program (<a href=\"https://www.gitkraken.com/bug-bounty-program\" class=\"external-link\" rel=\"nofollow noreferrer\" target=\"_blank\">https://www.gitkraken.com/bug-bounty-program</a>) has been shutdown.</p>\n<p>You are welcome to make a submission, but please realize that we will no longer pay any bounties.</p>","portalBaseUrl":"/servicedesk/customer/portal/7","reqTypes":[{"id":"10687","name":"Vulnerability","descriptionHtml":"","callToAction":"Vulnerability","introHtml":"<p>Flag a known security vulnerability with us</p>","icon":10311,"iconUrl":"https://gitkraken.atlassian.net/rest/servicedeskapi/requesttype/icon/type/issuetype/id/10311","groups":[30],"key":""}],"reqGroups":[{"id":30,"name":"General"}],"orderMapping":{"30":[10687]},"kbs":{"kbEnabled":false,"serviceDeskId":-1},"createPermission":true,"portalAnnouncement":{"portalId":7,"canEditAnnouncement":false,"canAdministerProject":false,"portalProjectKey":"BOUNTY","userLanguageHeader":"","userLanguageMessageWiki":"","defaultLanguageHeader":"","defaultLanguageMessage":"","defaultLanguageDisplayName":"English (United States)","isUsingLanguageSupport":false,"translations":{}},"canViewCreateRequestForm":true,"isProjectSimplified":true,"mediaApiUploadInformation":{"token":"eyJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJkOGI4NGM2MC0zYTJjLTRmNzMtOWRiMi03OWNjOWQzMTViZjQiLCJhY2Nlc3MiOnsidXJuOmZpbGVzdG9yZTpjb2xsZWN0aW9uOnVwbG9hZC1wcm9qZWN0LTEwNDc5IjpbInJlYWQiLCJjcmVhdGUiLCJ1cGRhdGUiXSwidXJuOmZpbGVzdG9yZTp1cGxvYWQ6KiI6WyJyZWFkIiwiY3JlYXRlIiwidXBkYXRlIl0sInVybjpmaWxlc3RvcmU6Y2h1bms6KiI6WyJyZWFkIiwiY3JlYXRlIl19LCJleHAiOjE3NzM0OTY2NTEsIm5iZiI6MTc3MzQ5NTQ1MSwiYW5vbklkIjoiYW5vbi11c2VyIiwiaHR0cHM6Ly9pZC5hdGxhc3NpYW4uY29tL2FwcEFjY3JlZGl0ZWQiOmZhbHNlfQ.raOzNEf5nLBFU1d4ZFHIQAKLvF4KJ6Emgyuqlr0ECdk","targetCollection":"upload-project-10479","endpointUrl":"https://api.media.atlassian.com","clientId":"d8b84c60-3a2c-4f73-9db2-79cc9d315bf4","tokenDurationInMins":20}},"reqCreate":{"id":10687,"projectId":10479,"issueType":{"id":"10687","name":"Vulnerability"},"form":{"name":"Vulnerability","descriptionHtml":"","callToAction":"Vulnerability","intro":"<p>Flag a known security vulnerability with us</p>","instructions":"","icon":10311,"iconUrl":"https://gitkraken.atlassian.net/rest/servicedeskapi/requesttype/icon/type/issuetype/id/10311","key":""},"fields":[{"fieldType":"text","fieldId":"email","fieldConfigId":"","label":"Email confirmation to","description":"","descriptionHtml":"","required":true,"displayed":true,"presetValues":[]},{"fieldType":"text","jiraFieldType":"summary","fieldId":"summary","fieldConfigId":"","label":"Summary","description":"","descriptionHtml":"","required":true,"displayed":true,"presetValues":[]},{"fieldType":"select","jiraFieldType":"priority","fieldId":"priority","fieldConfigId":"","label":"Severity","description":"","descriptionHtml":"","required":true,"displayed":true,"presetValues":[],"values":[{"value":"10029","label":"P1 - Critical","selected":false,"children":[]},{"value":"10030","label":"P2 - Severe","selected":false,"children":[]},{"value":"10031","label":"P3 - Moderate","selected":true,"children":[]},{"value":"10032","label":"P4 - Low","selected":false,"children":[]},{"value":"10033","label":"P5 - Informational","selected":false,"children":[]}],"noneOptionRequired":false},{"fieldType":"select","jiraFieldType":"com.atlassian.jira.plugin.system.customfieldtypes:select","fieldId":"customfield_11109","fieldConfigId":"11483","label":"Target","description":"Select the Target this Vulnerability applies to. Note that Targets not explicitly in-scope may not be eligible for acceptance","descriptionHtml":"<p>Select the Target this Vulnerability applies to. Note that Targets not explicitly in-scope may not be eligible for acceptance</p>","required":true,"displayed":true,"presetValues":[],"values":[{"value":"11859","label":"gitkraken.dev","selected":false,"children":[]},{"value":"11860","label":"GitKraken Desktop","selected":false,"children":[]},{"value":"11861","label":"Other","selected":false,"children":[]}],"noneOptionRequired":true},{"fieldType":"textarea","jiraFieldType":"description","fieldId":"description","fieldConfigId":"","label":"Overview of the Vulnerability","description":"Tell us the details about thi vulnerability, along with Business Impact, and suggested remediation steps.","descriptionHtml":"<p>Tell us the details about thi vulnerability, along with Business Impact, and suggested remediation steps.</p>","required":true,"displayed":true,"defaultObject":"{\"type\":\"doc\",\"version\":1,\"content\":[{\"type\":\"heading\",\"attrs\":{\"level\":1},\"content\":[{\"type\":\"text\",\"text\":\"Overview of the Vulnerability\"}]},{\"type\":\"paragraph\",\"content\":[{\"type\":\"text\",\"text\":\"Describe the vulnerability and its impact here\",\"marks\":[{\"type\":\"em\"}]}]},{\"type\":\"paragraph\"},{\"type\":\"paragraph\"},{\"type\":\"paragraph\"},{\"type\":\"heading\",\"attrs\":{\"level\":1},\"content\":[{\"type\":\"text\",\"text\":\"Steps to Reproduce\"}]},{\"type\":\"paragraph\",\"content\":[{\"type\":\"text\",\"text\":\"Provide a proof of concept and replication steps here\",\"marks\":[{\"type\":\"em\"}]}]},{\"type\":\"paragraph\"},{\"type\":\"paragraph\"},{\"type\":\"heading\",\"attrs\":{\"level\":1},\"content\":[{\"type\":\"text\",\"text\":\"Remediation\"}]},{\"type\":\"paragraph\",\"content\":[{\"type\":\"text\",\"text\":\"Add your suggested remediation steps here\",\"marks\":[{\"type\":\"em\"}]}]}]}","presetValues":[],"defaultObjectAsJson":"\"{\\\"type\\\":\\\"doc\\\",\\\"version\\\":1,\\\"content\\\":[{\\\"type\\\":\\\"heading\\\",\\\"attrs\\\":{\\\"level\\\":1},\\\"content\\\":[{\\\"type\\\":\\\"text\\\",\\\"text\\\":\\\"Overview of the Vulnerability\\\"}]},{\\\"type\\\":\\\"paragraph\\\",\\\"content\\\":[{\\\"type\\\":\\\"text\\\",\\\"text\\\":\\\"Describe the vulnerability and its impact here\\\",\\\"marks\\\":[{\\\"type\\\":\\\"em\\\"}]}]},{\\\"type\\\":\\\"paragraph\\\"},{\\\"type\\\":\\\"paragraph\\\"},{\\\"type\\\":\\\"paragraph\\\"},{\\\"type\\\":\\\"heading\\\",\\\"attrs\\\":{\\\"level\\\":1},\\\"content\\\":[{\\\"type\\\":\\\"text\\\",\\\"text\\\":\\\"Steps to Reproduce\\\"}]},{\\\"type\\\":\\\"paragraph\\\",\\\"content\\\":[{\\\"type\\\":\\\"text\\\",\\\"text\\\":\\\"Provide a proof of concept and replication steps here\\\",\\\"marks\\\":[{\\\"type\\\":\\\"em\\\"}]}]},{\\\"type\\\":\\\"paragraph\\\"},{\\\"type\\\":\\\"paragraph\\\"},{\\\"type\\\":\\\"heading\\\",\\\"attrs\\\":{\\\"level\\\":1},\\\"content\\\":[{\\\"type\\\":\\\"text\\\",\\\"text\\\":\\\"Remediation\\\"}]},{\\\"type\\\":\\\"paragraph\\\",\\\"content\\\":[{\\\"type\\\":\\\"text\\\",\\\"text\\\":\\\"Add your suggested remediation steps here\\\",\\\"marks\\\":[{\\\"type\\\":\\\"em\\\"}]}]}]}\"","rendererType":"atlassian-wiki-renderer"},{"fieldType":"select","jiraFieldType":"com.atlassian.jira.plugin.system.customfieldtypes:select","fieldId":"customfield_11173","fieldConfigId":"11545","label":"Paid","description":"Have we paid the researcher","descriptionHtml":"<p>Have we paid the researcher</p>","required":false,"displayed":false,"presetValues":[],"values":[{"value":"11887","label":"No","selected":true,"children":[]},{"value":"11888","label":"Yes","selected":false,"children":[]}],"noneOptionRequired":true},{"fieldType":"text","jiraFieldType":"com.atlassian.jira.plugin.system.customfieldtypes:float","fieldId":"customfield_11172","fieldConfigId":"11544","label":"Payment Amount","description":"How much we paid the researcher","descriptionHtml":"<p>How much we paid the researcher</p>","required":false,"displayed":false,"presetValues":[]}],"userOrganisations":[],"canBrowseUsers":false,"requestCreateBaseUrl":"/servicedesk/customer/portal/7/create/10687","requestValidateBaseUrl":"/servicedesk/customer/portal/7/validate/10687","calendarParams":{"firstDay":0,"date":"2026-03-14T06:37:32-0700","useISO8601WeekNumbers":false,"dateIfFormat":"%e/%b/%y","dateTimeIfFormat":"%e/%b/%y %I:%M %p","timeFormat":"12"},"kbs":{"kbEnabled":false,"serviceDeskId":-1},"canRaiseOnBehalf":false,"canSignupCustomers":false,"canCreateAttachments":true,"attachmentRequiredField":false,"hasGroups":true,"canSubmitWithEmailAddress":false,"showRecaptcha":true,"siteKey":"6LePXLkdAAAAAF4gCNalrL1IvZcqbNbZf_Zakudd","mediaApiUploadInformation":{"token":"eyJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJkOGI4NGM2MC0zYTJjLTRmNzMtOWRiMi03OWNjOWQzMTViZjQiLCJhY2Nlc3MiOnsidXJuOmZpbGVzdG9yZTpjb2xsZWN0aW9uOnVwbG9hZC1wcm9qZWN0LTEwNDc5IjpbInJlYWQiLCJjcmVhdGUiLCJ1cGRhdGUiXSwidXJuOmZpbGVzdG9yZTp1cGxvYWQ6KiI6WyJyZWFkIiwiY3JlYXRlIiwidXBkYXRlIl0sInVybjpmaWxlc3RvcmU6Y2h1bms6KiI6WyJyZWFkIiwiY3JlYXRlIl19LCJleHAiOjE3NzM0OTY2NTIsIm5iZiI6MTc3MzQ5NTQ1MiwiYW5vbklkIjoiYW5vbi11c2VyIiwiaHR0cHM6Ly9pZC5hdGxhc3NpYW4uY29tL2FwcEFjY3JlZGl0ZWQiOmZhbHNlfQ.F5EwtKbgixyuhZs4Fqq_VbRqjxgolxK5kq0efkOp4IQ","targetCollection":"upload-project-10479","endpointUrl":"https://api.media.atlassian.com","clientId":"d8b84c60-3a2c-4f73-9db2-79cc9d315bf4","tokenDurationInMins":20},"hasProformaForm":false,"proformaTemplateForm":{},"proforma":{"formExists":false,"formValid":false},"key":""},"portalWebFragments":{"headerPanels":[],"subheaderPanels":[],"footerPanels":[],"pagePanels":{"propertyPanels":[],"legacyPropertyPanels":[]}}}
{"headless":false,"wacLink":"https://www.atlassian.com/software/jira/service-desk/powered-by?utm_medium=jira-in-product&utm_source=jira_service_desk_portal_footer&utm_content=gitkraken","serviceDeskVersion":"3.3.0-OD","contextPath":"","xsrfToken":"b35f6b07d37aff7dd076cd292cd2811d79d5121b_lout","baseUrl":"https://gitkraken.atlassian.net/servicedesk/customer","relativeBaseUrl":"/servicedesk/customer","jiraDisplayUrl":"https://gitkraken.atlassian.net","onDemand":true,"mediaApiExternalUrl":"https://api.media.atlassian.com","mediaApiAppClientId":"d8b84c60-3a2c-4f73-9db2-79cc9d315bf4","fabricEmojiUrl":"/gateway/api","helpCenterType":"BASIC","traceId":"326e6492fa4948a0bc500506a8713e69","siteDefaultLanguageTag":"en-US","featuredValues":{"multiHelpCenterEnabled":true,"hcAIAnswersEnabled":false,"jsmAiConfigEnabled":true,"helpCenterCustomizationEnabled":true},"helpCenterHomePageSlug":"portals","customerAccountAvailabilty":"JSM_AND_JCS","baseUrlCSM":"https://gitkraken.atlassian.net","edition":"premium","anonymousEnabled":true,"requestIntroEnabled":true}