ZNetLive invites you (Independent security groups, individual researchers, ethical hacking professionals, etc.) to study ZNetLive from all the aspects, on all the platforms and help us to make it most secure for our customers. Please alert us about any potential vulnerabilities or security flaws that you find. You would be suitably rewarded for your efforts.
*For XSS related issues, we will only provide an appreciation certificate.
If you believe that you have found a security vulnerability or a potential flaw in any of our products/services or platforms, please report it to us by emailing at [email protected].
Please include the following details in your report:
Description of the location and potential impact of the vulnerability
A detailed description of the steps required to reproduce the vulnerability – POC scripts, screenshots, and compressed screen captures will all be helpful to us.
Your name/handle and a link for recognition.
ZNetLive requests that you adhere to our simple Disclosure Policy:
Kindly include the following details in your report:
Please avoid privacy violations, and do not destroy data or hinder our regular services.
The vulnerability or the bug must be original and previously un-reported. Thus, only the first reporter will be get benefit of the program.
Employees of ZNetLive, their close relatives (parents, siblings, children or spouse), ZNetLive business partners, agencies, alliances and their employees are not eligible for ZNetLive Bug Bounty Program.
We reserve the right to change the rules or cancel this program at any time.
Consideration for the bugs with serious security implications will be on case-to-case basis.
An official letter from ZNetLive will be issued to the bug reporter certifying the contribution towards our security. The letter will be generic and without mention of the vulnerability.