- As a security researcher, how do I report valid security bugs and/or security vulnerabilities on Clio's website?
- Support agent to direct security researcher to responsible disclosure page.
- Any Clio Application (web, mobile, add-ons)
We are happy to reward security vulnerabilities in any of our applications that are novel to us and that can be used to gain additional, illicit access.
To responsibly disclose a security vulnerability to Clio, we ask that you fill out our responsible disclosure submission form located at: https://www.clio.com/security/responsible-disclosure
We will acknowledge receipt of your report and lay out next steps within two business days of receiving the report.
Reports that are not disclosed responsibly will be ineligible for any reward.