Security Information

We take security seriously and see it as a joint effort to make the web safer – we're actively contributing to this ourselves.

If you've found a security vulnerability, great! We appreciate your help. This page outlines how to report issues responsibly.

Reporting Security Vulnerabilities

Serious security researchers don't ask about bug bounty programs – they report findings directly. If you have a genuine vulnerability, please contact us at security@safeserver.de.

Your report should include:

• A clear description of the vulnerability
• Steps to reproduce the issue

Our security team will:

• Confirm the vulnerability and assess its impact
• Develop and test a fix
• Deploy it in the next security update
• Keep you informed throughout the process

Responsible Disclosure Guidelines

When reporting, please:

• Share details only with our security team
• Allow reasonable time for us to respond and fix the issue
• Avoid public disclosure until we've confirmed the fix is deployed

Important Notes

• We do not run a bug bounty program. Please do not expect rewards.
• We do not respond to automated scans, scam attempts, or low-quality reports from script kiddies.
• If the vulnerability affects an open-source project, inform us. We can either provide the relevant maintainer contacts or forward the report ourselves.

Thank you for working with us to enhance security!

Safeserver Website | Legal information