Report security bug

Bug reports can be submitted by sending an email to [email protected], or by clicking the widget in the bottom right corner on this page.

Use this form to responsibly report a security bug.

  • Make sure the bug you report is eligible. See the section "Eligibility" in the program description.
  • Name the vulnerable target according to the section "Scope and Targets" in the program description.
  • Indicate the suggested vulnerability rating (critical, high, medium, low) as described in the section "Rewards" in the program description.
  • Describe the vulnerability details, ideally including a description of its impact and provide a proof of concept or replication steps.