Mesibo strongly believes in information security. To offer cutting edge security to our customers, we maintain a Bug Bounty Program for security researchers to get rewarded for reporting security and privacy issues in the mesibo platform.
If you believe you have found a security or privacy vulnerability in mesibo platform, let us know quickly. We will investigate all qualifying reports and if your vulnerability report uniquely identifies a security or privacy issue in the mesibo platform that is within the scope of our bounty program, you may receive a bounty award according to the program descriptions. Even if it is not covered under an existing bounty program, we will publicly acknowledge your contributions.
VERY IMPORTANT - VALUE YOUR TIME: Before spending your time, read Qualifying and non-Qualifying Reports below. We are only interested in Qualifying reports related to mesibo real-time APIs. We may discard (or use and discard) any non-qualifying reports without any acknowledgment or replies. With all due respect to your expertise, time, and opinion, we are NOT INTERESTED in receiving non-qualifying reports, however important you feel they are.
Any mesibo API issue that compromises the confidentiality or integrity of user data is likely to be in scope for the program.
Your report submission MUST include:
None of the above is OPTIONAL. If your report is missing any of those, it will not be considered as a qualifying report and we may not investigate the issue.
You also need to give us a reasonable time to investigate and resolve an issue you reported before publicly disclosing or sharing with others.
Although we review all the reports, this reward program is focused on mesibo API security and privacy issues. Hence some of the common low-risk issues do not qualify for the reward program. However, we may acknowledge your contribution if a valid issue is found. Following are some of the non-qualifying reports.
By submitting your report to this program, you understand that: