🔒 Security

Report a Vulnerability

Hellcat Blondie and Proud 2 Pay take security seriously. Responsible disclosure is always appreciated. We acknowledge reports within 48 hours.

Security Contact

[email protected]

Opens in Gmail, Apple Mail, Outlook — your default email app

✉ Email Security Team

Response Timeline

48h

Acknowledgment

7d

Assessment

30d

Target Fix

90d

Public Disclosure

In Scope

  • Authentication bypass or session hijacking
  • XSS, CSRF, SQL injection
  • Unauthorized access to protected routes
  • Sensitive data exposure
  • Server-side request forgery (SSRF)

Out of Scope

  • Denial of service (DoS/DDoS)
  • Social engineering or phishing
  • Physical access attacks
  • Third-party service vulnerabilities
  • Automated scanning without manual validation
← Back to Support