A vulnerability disclosure policy (VDP), also referred to as a responsible disclosure policy, describes how an organization will handle reports of vulnerabilities submitted by ethical hackers. A VDP must thus be easily identifiable via a simple way, a security.txt notice.

# This file is added by Plesk
# security.txt
# This file provides information for security researchers or other parties
# on how to contact you regarding security vulnerabilities or questions.
# For more details about this format, see: https://securitytxt.org/

Acknowledgments: https://security.plum-medien.de/thank-you.php
Contact: mailto:server@plum-medien.de
Encryption: https://security.plum-medien.de/download/pgp.txt
Preferred-Languages: de, en
Expires: 2026-04-22T00:00:00+01:00