1. Home
  2. Tools
  3. Help Center
  4. General questions
  5. Do you have a bug/bounty program?

We do not have an official bug bounty program. However, we have paid rewards for security disclosures in the past and will pay rewards for security disclosures if requested. The size of the reward will be set at our discretion and will be based on the severity of the bug reported.

In Scope:

Domain *.jobicy.com

Out of Scope Vulnerabilities:

  1. Issues related to software/application not under Jobicy’s control and owned by some third party (contact them).
  2. Clickjacking (UI redressing).
  3. Cross-site scripting (XSS).
  4. Text Injection.
  5. The brute force of promo/coupon code.
  6. Social engineering attacks.
  7. Spam & rate limiting.
  8. SSL/TLS protocol vulnerabilities.
  9. Email/Phone number enumeration (user enumeration).
  10. Any activity that could lead to the disruption of our service (DoS).

Please contact us for security questions or concerns.

Thanks for your feedback

Megaphone

Looking for remote employees to work?

Jobicy is helping companies of all sizes power their business with remote workers.

Start Hiring