Plugin Alliance welcomes security researchers to assist us in improving the security of our plugins and licensing service. We want to hear about any vulnerabilities related to the security and privacy of this website. We will verify and respond to any legitimate vulnerabilities reported to us. If you would like to disclose a vulnerability publicly, please wait to hear from us that it is fixed.
To promote responsible reporting, we will not take legal action against reporters who adhere to these guidelines:
- Describe the details of the vulnerability
- Explain how to reproduce the vulnerability, including any information you used to find it or a Proof of Concept (POC)
- Make a good faith effort to avoid violating our users’, customers’ and employees’ privacy, destroying data, and interrupting or degrading our service
- Do not modify or access data that does not belong to you
If you believe that you have discovered a vulnerability, please send a report to security at plugin-alliance.com. Include your name and contact information along with the information listed above. Use our PGP public key to encrypt your report.