How do I Claim a Bug Bounty or Report a Vulnerability?

Objective:

  • As a security researcher, how do I report valid security bugs and/or security vulnerabilities on Clio's website?
  • Where can I inform Clio's Security about a serious Issue?

Environment:

  • Any Clio Application (web, mobile, add-ons)

Additional Information:

We are happy to reward security vulnerabilities in any of our applications that are novel to us and that can be used to gain additional, illicit access.

Answer:

To responsibly disclose a security vulnerability to Clio, we ask that you fill out our responsible disclosure submission form located at: https://www.clio.com/security/responsible-disclosure 

We will acknowledge receipt of your report and lay out next steps within two business days of receiving the report.

Reports that are not disclosed responsibly will be ineligible for any reward.

 

Was this article helpful?
This information is confusing or wrong
This isn't the information that I was looking for
I don't like this functionality