Vulnerability Disclosure Policy

Vulnerability Disclosure Policy

At Multi Vendor, the privacy and safety of our users are extremely important to us.
We are committed to maintaining the highest standards of security to protect our visitors, customers, and their data.
This Vulnerability Disclosure Policy outlines how you can responsibly report any security vulnerabilities you discover in our website or related systems.

Purpose

The purpose of this policy is to give security researchers, ethical hackers, and users a clear guideline on how to report potential vulnerabilities safely and responsibly — without fear of legal action — and to help us fix them as quickly as possible.

Scope

This policy applies to:

  • Our main website (https://moolikanidhi.com)
  • Any subdomains, web applications, or online forms owned and operated by Multi Vendor

Reporting a Vulnerability

If you believe you’ve discovered a security issue, please contact us immediately.
Include the following details in your report:

  • A detailed description of the vulnerability
  • Steps to reproduce the issue
  • Screenshots or proof-of-concept (if possible)
  • Your contact information for follow-up

📧 Send your report to: info@example.com

We aim to acknowledge your report within 72 hours and provide updates until the issue is resolved.

Responsible Disclosure Guidelines

To protect our users and data:

  • Do not publicly disclose the vulnerability before we fix it.
  • Do not exploit the issue or attempt to access, modify, or delete data.
  • Do not impact the availability or performance of our site while testing.
  • Do not engage in social engineering, phishing, or spam-related activity.

Following these guidelines helps us maintain a safe and ethical security process.

Our Commitment

When you responsibly share a valid security report:

  • We will not pursue legal action against you.
  • We will work with you to fix the vulnerability quickly.
  • We may publicly thank or credit you (with your consent) for helping improve our security.

Out of Scope

Please do not report issues such as:

  • Broken links or missing images
  • Outdated browser warnings
  • SPF/DKIM/DMARC misconfigurations
  • Social media or third-party platform bugs not under our control

Continuous Improvement

We value collaboration with the security community.
By reporting potential issues, you help us keep our website secure for all visitors and customers.