Vulnerability Disclosure

Help us track down bugs and build better software !

Scopes

Websites and API Endpoints pickmycareer.in, api.pickmycareer.in , content.pickmycareer.in are all in scope.

The accepted categories include

SQL Injection
Authorization Flaws
XSS Cross-Site Scripting
Accessing Premium Features for Free
Gaining access to the account of other user
Sesitive Data Exposure
Vulnerability that affects Data & Financial Transactions of Users

Out of Scope

Dos & DDoS
Contact Form Requests
Automated Scan Reports
Disclosure of known public files
Clickjacking
Email Bombs
Exploits that require Vulnerable Browsers & Operating Systems

Found any bugs ? write us to support[at]pickmycareer.in

Responsible Vulnerability Disclosure Acknowledgements

People who helped us track down bugs.

June 2020

Ramesh kumar A
Sangeetha Rajesh S
Sandeep S
Praveen Kumar V
Saranyan G.J
Gopikrishna
Naveen J
cybersrikanth
Vasanthan

August 2020

Febin
Raajesh G