While we do not have a formalised bug bounty program at this time. We would appreciate having a reasonable time (up to 90 days) to fix any such vulnerabilities before they become public.
Please read before proceeding:
Jumbo Interactive maintains the following policy of responsible vulnerability fixing: