Safety First

Please do not do anything that may harm others. Do not use any data that does not belong to you and report to us any possible vulnerability immediately.

Legal Points

Please keep in mind that any action you take may and will be in expected to be in line with you local laws. We cannot grant you any sort of protection for these and any third party app we use that may come across in your reverse engineering.

Disclosure Guidelines

We ask of you to:

List Icon

Test only systems in scope

List Icon

Provide the details we need to reproduce the vulnerability, including the prerequisites that need to be met, tested system state, date and time you did the testing, possible Proof-of-concept

List Icon

Do not disrupt our services with intent

List Icon

Do not use automated scanning tools

List Icon

Do not send trivial issues


List IconHosts

All hosts owned by Sertifier Inc.

List Icon
List IconApps

All apps developed by Sertifier Inc.

List Icon
List IconOut-of-scope

Any problems regarding the third party apps we use are out of scope.

List Icon

Non-qualifying vulnerabilities

Do not send us reports of trivial or well known issues (such as XML-RPC, Clickjacking (X-Frame-Options), or well known WordPress issues).
Do not run DoS attacks.