The U.S. Privacy and Civil Liberties Oversight Board (“PCLOB”) is committed to maintaining the security of our systems and protecting sensitive information from unauthorized disclosure.
This policy describes what systems and types of security research are covered under this policy, how to send us vulnerability reports, and how long we ask security researchers to wait before publicly disclosing vulnerabilities.
We encourage security researchers to contact us to report potential vulnerabilities identified in PCLOB systems. For reports submitted in compliance with this policy, the PCLOB will acknowledge receipt within three business days, endeavor to timely validation of submissions, implement corrective actions if appropriate, and inform researchers of the disposition of reported vulnerabilities.
If you make a good faith effort to comply with this policy during your security research, we will consider your research to be authorized, we will work with you to understand and resolve the issue quickly, and we will not recommend or pursue legal action related to your research.
This program follows Bugcrowd’s standard disclosure terms.
For any testing issues (such as broken credentials, inaccessible application, or Bugcrowd Ninja email problems), please email support@bugcrowd.com. We will address your issue as soon as possible.
Scope Type | Scope Name |
---|---|
web_application | www.pclob.gov |
This program have been found on Bugcrowd on 2021-09-21.
FireBounty © 2015-2024