submit bug report: https://hootsuite.comWe take security very seriously at Hootsuite, and have an Information Security Bug Bounty program geared towards the identification and remediation of security issues.
Submitting a Report
If you are interested in submitting your findings for review, please email hootsec@hootsuite.com. Please note that, upon your submission, it might take up to 5 business days to triage and identify the right severity for the issue. If Hootsuite is already aware of the issue, we do not offer any reward for the finding. We request you not to share or publish an unresolved vulnerability with any third parties.
Please make sure the findings you are submitting are reproducible and not self-exploitation issues. Make sure to include the following content in the submission:
Title of the finding
Description of the finding
Location of the finding (product module/page)
Steps to reproduce (include Request/Response logs if applicable)
Screenshots/Video recording (if applicable)
Severity
Please refer to the policy page to find out more about bug eligibility.
Contact Hootsuite Help for Other Inquiries
For incidents that affect a single account, please contact support request, they are your fastest response for single-user security issues.
Policy:
https://hootsuite.com/security
