At Admin By Request, we recognize the critical importance of safeguarding the security and integrity of our products and services. This policy seeks to promote responsible reporting of potential vulnerabilities, ensure proper patching and minimize the risk of security incidents for our users.

It is crucial to acknowledge that premature disclosure of vulnerabilities can be counterproductive to its purpose as it may lead to security incidents, as users may not have the opportunity to implement timely patches, thereby exposing them to the vulnerability. This policy aims to strike a balance between transparency and security by establishing a coordinated and responsible disclosure process.

We understand that vulnerabilities are an inherent part of technology and our focus is on addressing them promptly to ensure a secure environment for our users. We value the contributions of the security community in helping us maintain the highest standards of security.

To report any vulnerabilities within the scope of this policy, please email security@adminbyrequest.com. We appreciate your cooperation and adherence to responsible disclosure practices.

Upon receipt of your report, our security team will promptly assess and address the reported vulnerability. We encourage you to provide detailed information to facilitate a quicker resolution.

Our security team will evaluate and validate reported vulnerabilities within a reasonable timeframe, typically no more than 30 days.

We prioritize the assessment based on the severity, impact and potential exploitation of the vulnerability.

Once a vulnerability is confirmed, Admin By Request will work diligently to develop a fix or mitigation strategy.

We aim to release patches or updates for significant vulnerabilities within 90 days of report validation.

Details of the vulnerability and its resolution will be disclosed responsibly, in coordination with the reporter, and in a manner that minimizes risk to our customers.