Reports in pixiv program: S.No Title Bounty 1 RCE due to ImageTragick v2 $2000.0 2 Stealing Users OAuth authorization code via redirect_uri $2000.0 3 CSRF at https://chatstory.pixiv.net/imported $500.0 4 XSS reflected on [https://www.pixiv.net] $500.0 5 XSS Reflected at https://sketch.pixiv.net/ Via next_url $500.0 6 Open redirect protection (https://www.pixiv.net/jump.php) is broken for novels $200.0 7 Open Redirect at https://oauth.secure.pixiv.net $200.0 8 Bypass extension check leads to stored XSS at https://s2.booth.pm $0.0 9 Reset any password $0.0