Vulnerability reporting

At Compiuta, we take the security of our products seriously. We appreciate the efforts of security researchers and users in helping us identify and address potential vulnerabilities: if you believe you have discovered a security issue, we encourage you to reach out as soon as possible.

Reporting a vulnerability​

To report a vulnerability, please send an email to security@compiuta.com.

Help us understand as much as possible about it by including a detailed description of the vulnerability, including steps to reproduce it. Please provide any supporting material that would be useful in helping us understand the nature and severity of the vulnerability.

Report handling​

Upon receiving your vulnerability report:

• we'll review it and get back to you - generally within 48 hours.
• we'll keep you informed on our progress as we investigate and/or mitigate your reported security concern
• we won't disclose issues until they've been fully investigated and patched and kindly ask you to do the same: we aim to resolve all security issues promptly and appreciate your help in keeping our users secure.

Once the issue is resolved, we'll post a security update and, if that's fine with you, give you credit for the discovery.

Thank you​

If you're on this page because you've found a vulnerability and want to disclose it safely, thank you. Your collaboration is crucial in ensuring the safety and privacy of our users.