Responsible Vulnerability Disclosure

If you discover, detect, or identify a vulnerability or potential security issue in the Cyware’s website (https://cyware.com/), please:

Contact us as soon as you discover and we'll make every effort to quickly resolve the issue. You can contact us, here.

1

Provide us with enough information to reproduce and identify the issue. Sharing all the requested information will allow us to evaluate your submission faster.

2

Give us a reasonable time to respond to your submission request before making any information about the vulnerability or security issue public.

While we are evaluating your submission, please:

Don’t indulge in destruction or modification of data, or interruption or degradation of services.

Don’t download data more than what is necessary for the demonstration of the vulnerability.

Interact only with accounts you own or with the explicit permission of the account holder.

Don’t perform social engineering, DDoS, privacy violations, spam, or other types of attacks.

Don’t disclose the vulnerability to any third-person, third-party, or share the details over the internet.

Vulnerability Acknowledgment and Certification of Recognition

Cyware <strong>does not offer</strong> any monetary reward but issues a <strong>certificate of recognition</strong> to those who report security issues responsibly.
Cyware does not offer any monetary reward but issues a certificate of recognition to those who report security issues responsibly.
For genuine <strong>ethical disclosures</strong>, we would <strong>publicly acknowledge</strong> the contribution on our website with your permission.
For genuine ethical disclosures, we would publicly acknowledge the contribution on our website with your permission.
Other rewards <strong>may</strong> be considered in some <strong>exceptional cases</strong>. However, Cyware reserves the <strong>sole right</strong> and <strong>discretion</strong> to consider such awards.
Other rewards may be considered in some exceptional cases. However, Cyware reserves the sole right and discretion to consider such awards.
Requests or demands for <strong>monetary compensation</strong> in connection with any identified or alleged vulnerability are <strong>non-compliant</strong> with this policy.
Requests or demands for monetary compensation in connection with any identified or alleged vulnerability are non-compliant with this policy.
Only the <strong>first reporter of a vulnerability</strong> will be <strong>publicly acknowledged</strong> and <strong>issued a certificate</strong> of recognition.
Only the first reporter of a vulnerability will be publicly acknowledged and issued a certificate of recognition.

          Only vulnerabilities in <strong>Cyware's website</strong> (<a href="https://cyware.com/" >https://cyware.com/</a>) are covered under our responsible vulnerability disclosure policy.
Only vulnerabilities in Cyware's website (https://cyware.com/) are covered under our responsible vulnerability disclosure policy.

Report a bug!

Fill out the form with all the requested information to help us identify the issue. While we evaluate your submission, please go through our policy details on this webpage to learn more about it.

Your Details

First Name
Last Name
Email ID
Any Publicly Identifiable Profile

Bug Details

What Issue did you find?
Affected URLs
Possible Impact