​

When reporting:

​

• Describe the vulnerability, including the affected product, version, and operating system or environment.

​

• Include the steps required to reproduce the vulnerability (Proof-of-Concept scripts, screenshots, and other evidence showing the exploit).

​

• Provide information about the potential impact of the vulnerability and potential remediation, if possible.

• Please provide your contact information so we can follow up with you.

​

• ​Please do not include: any personally identifiable information of any person other than yourself, or any information protected by data privacy laws.

 

Please let us know if and how you would like to be credited in public advisories (by name, company, organization, etc.).

​

Performetriks does not provide financial awards for identifying issues or participating in public bug bounty programs.