What is JotForm?
JotForm is a free online form builder which helps you create online forms without writing a single line of code. No sign-up required.

At JotForm, we want to make sure that you’re getting the online form builder help that you need. Our friendly customer support team is available 24/7.

We believe that if one user has a question, there could be more users who may have the same question. This is why many of our support forum threads are public and available to be searched and viewed. If you’d like help immediately, feel free to search for a similar question, or submit your question or concern.


  • Profile Image

    do you have bugbounty program for your website

    Asked by shubham  on August 05, 2014 at 04:19 PM

    hello....

    do you have bugbounty program for your website ???

    if i report any vulnerability, will i get any reward, swag or any gift ???

  • Profile Image
    JotForm Support

    Answered by david on August 05, 2014 at 05:31 PM

    Hi,

    Though we do not currently have a bug bounty program and in fact we have specialist for that, I have forwarded your message to our development team.  As bugs and vulnerabilities are our highest priority, we are always looking for new leads and there may be something we can do.

    Thank you for your interest in helping us out!

  • Profile Image
    JotForm Support Manager

    Answered by Jeanette on December 26, 2016 at 05:39 PM

    From now on, please use  this form  to report a vulnerability.

    Thank you.

  • Profile Image

    Answered by aquilesbailoyo2 on January 05, 2017 at 09:32 PM

    Hi jeanette, 

     

    you have a list of bounty rewards ?

     

    thanks

  • Profile Image
    JotForm Support

    Answered by liyam on January 06, 2017 at 12:32 AM

    Hello aquilesbailoyo2,

    We do not have a list for bounty rewards. Feel free to submit a vulnerability that you find and we'll get back to you as soon as possible.

    Thanks.

  • Profile Image

    Answered by laksha on January 22, 2017 at 05:14 PM

    Hello there.

     

    Thank you

  • Profile Image
    JotForm Support

    Answered by liyam on January 22, 2017 at 07:38 PM

    Hello laksha,

    I'm not sure I'm following you on your comment with a link to an old thread. If you have found any vulnerability on any part of JotForm, please use this form.

    Thanks.

  • Profile Image

    Answered by tayyab qadir  on February 06, 2017 at 11:04 AM

    Hi sir i have reported two XSS Filter bypasses via form please have a look on that 
    Thanks
    Regards
    Tayyab Qadir 

  • Profile Image
    JotForm Support

    Answered by ashwin_d on February 06, 2017 at 12:45 PM

    Hello Tayyab,

    Have you reported the vulnerabilities by accessing the following URL: https://form.jotform.com/62984139400962

    Someone from our backend team will get back to you shortly.

    Thank you!

  • Profile Image

    Answered by tayyab qadir  on February 10, 2017 at 07:22 AM

    Yes  sir 
    here is the ID of My report But one week passed no response For these 

    1st XSS Vulnerable report : VULN-2017-02-05-1258
    2nd XSS Vulnerable Report : VULN-2017-02-06-1907
    3rd XSS Vulnerability report :VULN-2017-02-06-2102

    Waiting for that sir Thanks
    :) 

  • Profile Image
    JotForm Support

    Answered by ashwin_d on February 10, 2017 at 08:39 AM

    Hello Tayyab,

    Your vulnerability reports have already reached our backend team. I believe someone form our backend team will respond to you directly. 

    Thank you!

  • Profile Image

    Answered by Tayyab Qadir  on February 10, 2017 at 04:28 PM

    Hope so 

    Cause it almost one week passed and no response that why i was worried 

    But i will wait 😇

  • Profile Image
    JotForm Support

    Answered by david on February 10, 2017 at 04:33 PM

    We have been quite a bit busier than usual with the V4 builder launch.  We should hopefully be able to address the issue soon.

  • Profile Image

    Answered by Tayyab Qadir  on February 11, 2017 at 12:14 AM

    Thanks You sir i'll wait :) 

  • Profile Image

    Answered by Sajibe Kanti  on February 15, 2017 at 01:43 PM

    hi i am also not getting the replies from security team
    regards
    Sajibe Kanti 

  • Profile Image
    JotForm Support

    Answered by david on February 15, 2017 at 02:46 PM

    If you have reported the bug through the following form:

    https://form.jotform.com/62984139400962

    Our team will follow up as soon as they get to your report.

  • Profile Image

    Answered by tayyab qadir  on March 06, 2017 at 02:24 AM

    Hi Security Team 

    I am Awaiting for the response of My Three XSS Report Which reported via Form More then a month ago 

    Can you tell the current situation whats Going on 
    for these report 


    1st XSS Vulnerable report  :  VULN-2017-02-05-1258 
    2nd XSS Vulnerable Report : VULN-2017-02-06-1907

    3rd XSS Vulnerable Report : VULN-2017-02-06-2102


    Thanks
    Regards
    Tayyab Qadir 

     

  • Profile Image
    JotForm Support

    Answered by Charlie on March 06, 2017 at 03:30 AM

    @tayyab qadir

    I have opened a separate thread for your concern. Please refer to this link: https://www.jotform.com/answers/1082508. Thank you.

  • Profile Image

    Answered by Tayyab qadir  on March 06, 2017 at 05:21 AM

    Ok thanks 

  • Profile Image

    Answered by smitgajra007 on March 10, 2017 at 08:39 AM

    Hi @jotform Team

     

    Have you looked at VULN-2017-03-07-2039 ??

    Hi, just wondering if there's been any update?

     

    Regards,

    Smit Gajra

    Independent Cyber Security Researcher

    hackerone.com/smit

  • Profile Image
    JotForm Support

    Answered by david on March 10, 2017 at 11:04 AM

    I am not sure if our devs have had a chance to look at the report at of yet.  They will follow up as soon as they can.

  • Profile Image

    Answered by smitgajra007 on March 21, 2017 at 01:32 PM

    Hi @david

    just wondering if there's been any update about VULN-2017-03-07-2039 ??

    Thanks!

    Smit

     

     

  • Profile Image
    JotForm Support

    Answered by david on March 21, 2017 at 02:39 PM

    As soon as the developers have had a chance to address the bug, they will follow up.  Unfortunately, they may not have had a chance to address it yet.

  • Profile Image

    Answered by Smit  on May 29, 2017 at 09:02 PM

    VULN-2017-05-11-806

    Hi @david

    just wondering if there's been any update about VULN-2017-05-11-806??

    Thanks!

    Smit

     

  • Profile Image
    JotForm Support

    Answered by Chriistian on May 29, 2017 at 09:35 PM

    @Smit,

    Please note that you will be contacted with the email address you have provided on the form if there are any updates with your report. 

    Regards.

  • Profile Image
    JotForm Support

    Answered by ashwin_d on June 07, 2017 at 08:32 AM

    Hello OneAnasTiger,

    Have you reported the vulnerability in the following form:  https://form.jotform.com/62984139400962

    If you have reported, I am sure someone form our backend team will get back to you soon.

    Thank you!