We take security seriously at Weblutions. However, the community have a big part in identifying and reporting these issues for the safety of all and we reward those that do.
We fully encourage the safe hunting of security related issues on our products and allow rewards for those that find these issues and identify them correctly.
While we disallow hunting for these issues in a way that puts someone else's website at risk we encourage it within test environments and your own instances, we don't want to put others at risk.
In the event a security issue is found report it to support@weblutions.com
with a detailed description of what the security issue is and how to replicate it (if possible). We do offer cash rewards or giftcards to those who identify a legitimate security issue on our products as a way to say thank you.
Rewards will not be handed out if you do any of the following;
- publicly reporting/sharing the issue, we believe in transparency. However, when it puts other people at risk, there's the correct way to manage it.
- using the exploit or security issue against other people whom haven't given you consent to do so.
- using the exploit or security issue in a malicious or unethical way
- withholding the issue initially to have control/power over the issue, or any ransom
- Reporting it incorrectly, the only way to report these issues are via email to
support@weblutions.com
.
Please take this page into consideration as it is against our Terms of Service to not report a security issue that has been identified.
Cash rewards are not guaranteed and can vary in amount per situation.