Reporting Security Vulnerabilities

Updated

Question

How do I submit a security vulnerability to 7shifts?

Answer

At 7shifts, we take the security of our customers' data very seriously. To ensure a safe and reliable environment, we welcome and appreciate the assistance of security researchers and our customers in identifying and reporting any potential security vulnerabilities. 

If you have discovered a security vulnerability in any of our products or services, we ask that you report it to us through our Vulnerability Disclosure Program (VDP).

What is a Vulnerability Disclosure Program?

A Vulnerability Disclosure Program (VDP) provides a secure and structured way for individuals to report security issues to an organization. This helps us to quickly and responsibly address any potential risks, protecting our systems and user data. By using a VDP, you can ensure that your report reaches the right team and is handled with the appropriate urgency and care.

How to Submit a Vulnerability Report

To submit a report, please use our secure portal:

https://client.inspectiv.com/vdp/7shifts

This link will take you to a dedicated form where you can provide all the necessary details about the vulnerability you've found.

When submitting your report, please include the following information:

  • A clear and detailed description of the vulnerability.
  • Steps to reproduce the issue, including a Proof of Concept (PoC) if possible.
  • The affected product or service and any relevant URLs or application versions.
  • Your contact information so we can follow up with you.

We kindly request that you do not publicly disclose any vulnerabilities until we have had a reasonable amount of time to review and address them. This is known as coordinated vulnerability disclosure and helps ensure the safety of our customers.

Thank you for helping us maintain a secure platform. We appreciate your partnership in keeping our community safe.

 

Was this article helpful?
0 out of 0 found this helpful