Bug Bounty
Wonderchat Bug Bounty Program
At Wonderchat, we're committed to ensuring the security and reliability of our AI chatbot builder.
We value the contributions of security researchers and ethical hackers in identifying potential vulnerabilities. This bug bounty program is our way of recognizing and rewarding those who help us improve our platform's security.
Scope
Our bug bounty program covers the following areas of Wonderchat:
Wonderchat app (https://app.wonderchat.io)
Wonderchat API endpoints
Rewards
We offer monetary rewards based on the severity of the vulnerability and the quality of the report:
High: $200 - $500
Medium: $50 - $200
Low: $25 - $50
Note: The final reward is at the discretion of the Wonderchat security team. We always strive to be fair and recognize valuable contributions.
Submission Guidelines
To submit a vulnerability report, please follow these guidelines:
Provide a detailed description of the vulnerability, including steps to reproduce.
Include any relevant screenshots, videos, or proof-of-concept code.
Explain the potential impact of the vulnerability.
Suggest possible remediation steps, if applicable.
Send your report to: [email protected]
Important: Due to the volume of submissions we receive, we may not respond to reports that we deem insignificant or of very low severity. We appreciate your understanding and continued support in improving Wonderchat's security.
Rules and Eligibility
Do not attempt to exploit vulnerabilities beyond what is necessary to demonstrate the issue.
Do not access, modify, or delete data that does not belong to you.
Do not conduct denial of service attacks or any tests that impair access to our services.
Only test against accounts you own or have explicit permission to test.
Do not share any information about a vulnerability with others until it has been resolved.
You must be at least 18 years old or have parental consent to participate.
Legal
By participating in our bug bounty program, you agree to these terms and conditions. Wonderchat reserves the right to modify or terminate this program at any time. All reward decisions are final and at the discretion of Wonderchat.
Contact
If you have any questions about our bug bounty program, please contact us at [email protected].