This website requires JavaScript. Please enable JavaScript

Vulnerability Disclosure

Help us track down bugs and build better software !


Websites and API Endpoints, , are all in scope.

The accepted categories include

  • SQL Injection
  • Authorization Flaws
  • XSS Cross-Site Scripting
  • Accessing Premium Features for Free
  • Gaining access to the account of other user
  • Sesitive Data Exposure
  • Vulnerability that affects Data & Financial Transactions of Users

Out of Scope

  • Dos & DDoS
  • Contact Form Requests
  • Automated Scan Reports
  • Disclosure of known public files
  • Clickjacking
  • Email Bombs
  • Exploits that require Vulnerable Browsers & Operating Systems

Found any bugs ? write us to support[at]

Responsible Vulnerability Disclosure Acknowledgements

People who helped us track down bugs.

June 2020

August 2020