Security Program

Vulnerability Disclosure Program

At Ala-Voz, security is fundamental. We collaborate with security researchers to identify and resolve vulnerabilities, protecting our customers and their data.

24-hour response
Rewards up to $5,000
150+ researchers collaborating

Security Contact

Company

Alabambi LLC

Address

99 Wall Street #2186
New York, NY 10005

Security Email

security@voz.center

PGP Key

Available at keybase.io

Program Details

Severity Levels and Rewards

Critical

$2,500 - $5,000

Examples: Remote code execution, complete database access, authentication bypass

High

$1,000 - $2,500

Examples: SQL injection, stored XSS, privilege escalation

Medium

$250 - $1,000

Examples: Reflected XSS, CSRF, sensitive information exposure

Low

$100 - $250

Examples: Misconfigurations, minor validation issues

Security Hall of Fame

We thank the following security researchers for their valuable contributions:

JD

John Doe

SQL Injection - Critical

January 2025

AS

Alice Smith

Stored XSS - High

December 2024

MJ

Mike Johnson

CSRF - Medium

November 2024

Guidelines for Researchers

Allowed Practices

  • Testing on systems within defined scope
  • Using your own test accounts
  • Detailed reports with PoC
  • Responsible and professional communication

Prohibited Practices

  • Accessing or modifying customer data
  • Denial of service attacks (DoS/DDoS)
  • Social engineering or phishing
  • Public disclosure before resolution

Found a Vulnerability?

Report responsibly and help us keep our customers safe.

Secure Email

security@voz.center

PGP Encryption

keybase.io

Response

Within 24 hours

Last updated: January 15, 2025

This program may be updated periodically. Check this page regularly for changes.

🍪 Utilizamos Cookies para Mejorar tu Experiencia

Utilizamos cookies esenciales para el funcionamiento del sitio y cookies opcionales para análisis y marketing. Puedes gestionar tus preferencias o aceptar todas para una experiencia personalizada.Ver política completa de cookies