We attach great importance to security issues and welcome all security researchers to report potential security vulnerabilities to us to improve the security of our products and services.
The email should include at least the following information:
- Your organization and contact information
- Products and versions affected
- Description of the potential vulnerability
- Information about known exploits
- Disclosure plans
- Additional information, if any
Although we encourage investigation of potential security breaches, we cannot tolerate any activity that may interfere with legitimate users or may violate applicable computer abuse, cyber security and data protection regulations. Therefore, the following activities are prohibited:
- Modification or destruction of data
- Service disruption or degradation, such as DoS
- Disclosure of personal, proprietary or financial information
After receiving the vulnerability you reported, we will send you vulnerability response related information within 48 hours via email. The progress of the vulnerability's solution development will also be continuously updated through email as soon as possible.
*Note: Actual vulnerability response time may vary depending on the risk level and complexity of the vulnerability.
