GoProfiles is committed to building a strong relationship with the information security community. In order to reward the best external contributions that help us keep our users safe, we maintain a Bug Bounty Program for GoProfiles owned web properties.
If you believe you have found a security vulnerability in GoProfiles product offering, please email your finding to bugbounty@goprofiles.io. You can also email us with any questions regarding GoProfiles security.
Starting from 06/17/2024 the GoProfiles Bug Bounty Program is invite only. Issues submitted to bugbounty@goprofiles.io will be handled based on priority.
- Services in scope: Any GoProfiles owned web service that handles reasonably sensitive user data is intended to be in scope. This includes virtually all the content in the *.goprofiles.io domain.
- Qualifying vulnerabilities: Any design or implementation issue that substantially affects the confidentiality or integrity of user data is likely to be in scope for the program. The program is limited to technical vulnerabilities in GoProfiles owned / used web applications.
- Disclaimer: Please do not attempt to carry out DoS or DDoS attacks, social engineering, spamming or do other similarly questionable things.