Please provide as much information as possible. The more information you provide, the quicker we can validate your findings and respond.
We do not consider the following to be security vulnerabilities:
– Presence or absence of HTTP headers (X-Frame-Options, CSP, nosniff, etc.).
– Missing security-related attributes on non-sensitive cookies.
– Exposed stack traces without personally identifiable information.
Enter your info to receive updates on the status of your submission. If you want to stay anonymous, you may leave these fields blank.
Adding screenshots and screen-recordings will help us review your finding.