Responsible disclosure of security vulnerabilities
We take security seriously and appreciate the security research community's efforts to help keep CodeXter Lab safe. If you've discovered a security vulnerability in our platform, please report it responsibly through this channel.
Security Best Practices:
Do not exploit vulnerabilities beyond what's necessary to demonstrate the issue
Do not access, modify, or delete other users' data
Do not publicly disclose the vulnerability before we've had time to address it
Provide detailed steps to reproduce the issue
Allow reasonable time for us to respond and fix the issue
What to Report:
Authentication or authorization bypass
SQL injection or other injection vulnerabilities
Cross-site scripting (XSS) or cross-site request forgery (CSRF)
Server-side request forgery (SSRF)
Exposed sensitive data or credentials
Remote code execution vulnerabilities
Other security vulnerabilities that could impact our users
Response Timeline: We aim to acknowledge security reports within 48 hours and provide regular updates as we investigate and address the issue.
Recognition: We maintain a security hall of fame to recognize researchers who help us improve our security. With your permission, we'll credit you for responsibly disclosing vulnerabilities.