To report a vulnerability, please visit our Security Vulnerability Reporting Portal and fill out the provided form. Be sure to include all relevant details, such as steps to reproduce the issue and any proof of concept.
Please include:
• A brief title of the vulnerability.
• A detailed description.
• Steps to reproduce the issue.
• Any proof of concept (e.g., screenshots, code snippets).
• The affected systems (e.g., software versions, platforms).
Yes, reporting through our form is secure. We protect your personal data and will not share your details without your consent unless required by law.
Yes, you can choose to remain anonymous. However, providing an email address will allow us to contact you for additional information or to update you on the status of your report.
Once submitted, our security team will:
• Acknowledge your report.
• Investigate the issue and assess its severity.
• Work on a fix or mitigation.
• Update you on the progress and notify you once the issue is resolved.
You can choose to be publicly credited for discovering the vulnerability, or you can remain anonymous. If you wish to be acknowledged, please indicate this when submitting your report.
We currently do not offer monetary rewards, but we do recognize and acknowledge contributors in our Vulnerability Reporting Heroes list when appropriate.
The time to resolve a vulnerability depends on its severity. Critical issues are prioritized and worked on immediately, while less severe issues may take longer and could be included in future releases.
We ask that you refrain from public disclosure for 90 days after your report or until we confirm a fix, whichever comes first. This allows us time to address the vulnerability and release a patch.
After submitting your report, you will receive a confirmation email with the reference number (generated at the time of submitting). If you do not receive an acknowledgment within 48 hours, please contact us at VRP@Alliancenetworkcompany.com by giving the reference number provided at the time of reporting How to Submit a Vulnerability Report There are two easy ways to submit your vulnerability report: Email: Send your report directly to VRP@Alliancenetworkcompany.com Online Form: Click “Security Vulnerability Reporting to submit a report via our secure online form. (Please note that our form is designed with end-to-end encryption to protect the information you submit.) After we receive your report, our security team will review it promptly, and you will receive an acknowledgment within 48 hours.