Report a Security or Privacy Vulnerability
The TaxDome's Bug Bounty Policy applies to security vulnerabilities found within TaxDome's public-facing online environment.
The purpose of the Policy is to establish the rules for the review, evaluation, application, and verification of system updates to mitigate vulnerabilities in the IT environment and the risks associated with them. If you believe you have discovered a security or privacy vulnerability in the TaxDome product, please report it to us.
You can prevent the setting of cookies by adjusting the settings on your browser (see your browser Help for how to do this). Be aware that disabling cookies will affect the functionality of this and many other websites that you visit. Disabling cookies will usually result in also disabling certain functionality and features of the this site. Therefore it is recommended that you do not disable cookies.
Any security researcher is required not to take any destructive action that could result in:
- Loss of data from other users
- Denial of Service for other users
- Add to any Block List
In case you suspect that a vulnerability of this kind exists, please contact TaxDome development team at firstname.lastname@example.org.
Please note, we only pay fees for original reports. In case of a duplicate, we will inform you when the first report was registered.
- Everything that is not under our control (third-party services)
- Everything that requires physical access to device or network
- Everything that requires outdated versions of software or hardware
- Social engineering, phishing etc.
- Recommendations and best practices, as long as there is no specific exploit
How to Report Security or Privacy Vulnerabilities?
- If you believe you have discovered a security or privacy vulnerability that affects TaxDome software, services, or web servers, please report it to us.
- We welcome reports from everyone, including security researchers, developers, and customers.
- To report a security or privacy vulnerability, send an email to email@example.com and include relevant videos, crash logs, and system diagnosis reports in your message.
- You’ll receive a reply from TaxDome to acknowledge that we received your report. We’ll contact you if we need more information.