Skip to main content
At YourSitee, we take privacy and security seriously. That’s why we’ve launched our open bug bounty program, inviting researchers and ethical hackers to help us keep the platform safe. By responsibly finding and disclosing vulnerabilities, you play a key role in protecting our users and shaping a more secure YourSitee. We believe security should be a collaboration. That’s why our rules are simple, transparent, and designed to safeguard both you and us. Join us in shaping a more secure YourSitee—your contributions make a real difference.

Check the reporters [X]

< top 10 bug hunter - yoursitee username - XP - bug hunting since>
CTA: expand button for the full list

How we approach security issues

  • YourSitee will not take legal action against users who responsibly disclose vulnerabilities to us.
  • All valid reports are reviewed and answered as quickly as possible—typically within 24 hours.
  • While we don’t provide monetary rewards, we believe recognition and community perks matter just as much. Smaller issues earn bug XP, which unlocks exclusive bug hunter badges and other rewards. For more critical findings, we grant instant badges, free premium subscriptions for you and your friends, and unique YourSitee gifts.
  • To report a vulnerability, please reach out to us at security@yoursitee.com

Program Rules

  • Only test on accounts and pages you personally own. Please never attempt actions that could affect other users.
  • Testing should be limited to services and sites operated directly by YourSitee. Reports about third-party tools or providers that integrate with us will not be accepted.
  • Do not attempt activities that could harm the reliability or integrity of our platform. Prohibited actions include, but are not limited to: brute forcing, denial of service (DoS), spamming, or timing attacks.
  • Automated scanners or tools must not be used to find vulnerabilities.
  • If a certain type of vulnerability repeatedly appears, we may temporarily mark it Out of Scope while we work on a permanent fix internally. Any such changes will be clearly communicated, along with an expected timeline. Once resolved, the issue will be re-allowed and noted in the policy.
  • All information about discovered issues must be treated as strictly confidential until YourSitee has confirmed and fixed the problem. Publication or public sharing of findings is only allowed after prior agreement with YourSitee. Until then, you must take all reasonable steps to ensure that no details are disclosed publicly.

Processing Report Submissions

All bugs must be reported through our official bug-tracker, ensuring issues are tracked and resolved efficiently. The only exception is critical security vulnerabilities, which should be submitted directly via email to security@yoursitee.com or by clicking here.
Members of our Tester Squad program should use the internal issue tracker for everything except critical vulnerabilities.
Rewards are granted to reports that:
  • are submitted first,
  • include clear reproduction steps and, where possible, screenshots or video evidence,
  • allow our teams to begin fixing the issue quickly,
  • and provide the most detailed and thorough description.
Please note that in some cases, the very first report may lack important details. In such situations, a later submission with a more complete report may be eligible for rewards.

Out of Scope Vulnerabilities

When reporting vulnerabilities, please consider (1) attack scenario / exploitability, and (2) security impact of the bug. The following issues are generally considered out of scope (not an exhaustive list):
  • first thing
  • second thing

Temporarily Out of Scope Vulnerabilities

  • first thing

YourSitee Tester Squad

The Tester Squad is a private, invitation-only community program at YourSitee, bringing together dedicated volunteers who usually already hold bug hunter badges and actively report issues. Members help us test early features, and their feedback is taken particularly seriously. In addition to special rewards, Tester Squad members enjoy free access to a Premium subscription for the duration of their membership.
Last modified on March 8, 2026