Security at Jumpshare

If you discovered a security vulnerability in Jumpshare,
we would love to hear from you.

Report an Issue

Reporting an issue

We appreciate how much work and effort goes in to penetration testing. To avoid frustration, you can find out these common non-vulnerabilities that do not quality for a reward.

If you have a valid issue, please include the following:

  • The summary of the problem.
  • A severity rating on the scale of 1 - 5 (1 being least severe and 5 being most severe, i.e, you can easily access, hijack or impersonate any account or data)
  • A step by step breakdown of how to recplicate the issue.
  • The operating system and web browser name and version that you used to replicate the issue.

Note: If you plan to provide sensitive data/logs, secure cookies, or access tokens as an example, please mention it in the email subject.

Rewards

We are extremely grateful for all those who put in their hard work to identify weaknesses within Jumpshare. For reports that are not common non-vulnerabilities, we like to reward those who responsibly disclose vulnerabilities with an acknowledgement, swag or bounty money.

Acknowledgements

We appreciate the work that goes into finding and disclosing security flaws in Jumpshare and would like to thank the following individuals and organizations:

  • Abdul Karim
  • Joel Melegrito
  • Lukas Rohal
  • Jens Muller
  • Pyae Phyoe Thu
  • Andrei Conache
  • Kyle Slayer
  • Piyush Malik
  • B.Dhiyaneshwaran
  • Md Nahid Hassan
  • Asif Baig
  • Sundarr Insa
  • Tarun Mahour
  • Zaw Nyein Htet
  • Ketan Madhukar Mukane
  • Ahmad Firmansyah
  • Kaung Htet Zaw
  • Sagar Yadav
  • Ali Razzaq
  • Sushma Ahuja
  • Abhijeet Sarkar
  • Danang Avan Maulana
  • Ayon Hasan
  • Jens Müller
  • Evan Ricafort
  • Rafael Rodrigues
  • Rifatullah Sazid
  • Ertuğrul Özdemir
  • Ahmad Firmansyah