Reports in greenhouse program: S.No Title Bounty 1 Open S3 Bucket Accessible by any Aws User $100.0 2 [greenhouse.io] CRLF Injection / Insecure nginx configuration $0.0 3 Open Redirect in .greenhouse.io $0.0 4 Content Spoofing on link.greenhouse.io $0.0 5 DoS through cache poisoning using invalid HTTP parameters $0.0 6 Bypass of request line length limit to DoS via cache poisoning $0.0 7 Cache poisoning using NULL bytes and long URLs $0.0 8 Debug information disclosure on oauth-redirector.services.greenhouse.io $0.0 9 Subdomain Takeover on demo.greenhouse.io pointing to unbouncepages $0.0 10 SSH port on store.greenhouse.io is vulnerable to brute force attacks $0.0