Home / Responsible Disclosure

Responsible Disclosure

Special Note: We are closing our responsible disclosure program for the mean time. We will start the program again in our own discretion.

Hello guys, in behalf of the people behind PinoyHackNews, I am glad to announce that we are embracing a bug bounty program. In the moment, since we are just a small company we can only list you in our Hall of Fame as a token of appreciation.

Photo Credit: http://www.forbes.com/sites/andygreenberg/2010/11/01/google-offers-cash-for-security-bugs-in-its-web-apps/

Eligible bugs include, but are not limited to:

  1. Cross Site Scripting Attacks
  2. WordPress Related Vulnerabilities
  3. Server-side code execution
  4. Vulnerable Plugin/Widgets

If possible do not use automated tools in searching for vulnerabilities in our website and a big NO of DOSing( Denial of Service) our website.

To report, simply send an email to [email protected] with your proof of concept and the steps to reproduce the vulnerability.

We reserve the right to refuse or grant HOF listing at our discretion, and to modify or cancel this policy at any time with no prior notice.

Your name will be listed below and will represent as a recognition for participating the program.
Please note that the first reporter of the same vulnerability will be only added in our list.

Clifford Trigo