Responsible Vulnerability Disclosure

If you find a security vulnerability in 36.services or any related platforms, please send us an email at sec@sys36.net. When sending the mail, please send us exact details of the security issue and how to reproduce it.

Depending on the severity of the issue found, you may receive a reward as compensation for your time, and you may also be added to our Hall of Fame, which can be found here.

A potential reward is void completely if you are using the security vulnerability to disrupt service, exfiltrate data, harass users, or otherwise cause damages to us or our users.

Note: This information is subject to change. Last updated: 12/4/2023 @ 4:20 PM