Disclosure
Our various programs do not allow public disclosure. You may not publicly disclose information about vulnerabilities found on any Jotform site.
Jotform Bug Bounty Program
Ensuring the privacy and security of our user data is a top priority for Jotform. Therefore, we have established a bug bounty program in collaboration with HackerOne. While this program is by invitation only, we are also open to receiving voluntary reports from the public. If you believe you have found a security vulnerability that affects any Jotform product, please report it to us.
Read on for more information about our Vulnerability Disclosure Program as well as how to report a vulnerability.