2/22/2023 0 Comments Intuit mint community forum![]() ![]() Intuit uses the HackerOne platform to manage the Responsible Disclosure Program. Any form of denial of service (DoS) attack.The following types of vulnerabilities are out of scope for this program: Don’t conduct fraudulent activity or complete fraudulent financial transactions as part of your research.If personally identifiable information (PII) is encountered, you are required to stop and immediately notify Intuit. Don’t store, share, compromise or destroy any Intuit data or customer data while conducting research activities.Don’t engage in illegal activities or any acts that violate any international laws or regulations, or federal or state laws or regulations.Don’t engage in any act that may cause an outage or stop any of Intuit’s services.Don’t cause harm to Intuit, its customers, shareholders, partners or employees.Provide the complete details related to the security issue, including proof-of-concept (POC) URL, as well as the details of the system(s) where tests have been conducted.Provide a clear, concise description of the steps needed to reproduce any vulnerability you submit.We're focused on the security of our customers and our systems, and some vulnerabilities take longer than others to address. Wait until we provide you notification that the vulnerability has been resolved before you disclose it to third parties.Share the security issue with us before making it public (e.g., on message boards, mailing lists, or other forums).Security Researchers will disclose potential weaknesses in compliance with the following guidelines: ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |