Free Consult

Search.

Responsible Disclosure Policy

At Plate we take the security and reliability of our platform seriously. We continuously improve our systems, but vulnerabilities can exist. If you discover a security issue, we appreciate your help in reporting it responsibly.

How to Report a Vulnerability

If you believe you’ve found a security vulnerability in any Plate system, please notify us as soon as possible.

You can report vulnerabilities via:

Email: development@platecms.com
Encrypted reports (recommended): Use our PGP key
Fingerprint: 503A 76CF F7BE C702 CF72 5291 369A 1A15 B074 B8A1
Public key: View PGP Key

Please include enough information for us to reproduce the issue (system, endpoint, steps, impact).

What We Ask From You

  • Act in good faith and report the issue as soon as possible.
  • Do not exploit or abuse the vulnerability.
  • Do not access, modify, or delete data that isn’t yours.
  • Do not perform actions that degrade the availability of our services (e.g., DDoS, brute force).
  • Give us a reasonable amount of time to investigate and fix the issue before publicly disclosing it.

What You Can Expect From Us

  • We will acknowledge your report within 2 business days.
  • We will investigate the issue and aim to resolve it as soon as possible.
  • We will keep you informed of progress.
  • We will not pursue legal action if you follow the guidelines above.
  • With your permission, we will credit you publicly after the issue is resolved.

Out of Scope

To avoid misunderstandings, the following are generally not considered vulnerabilities:

  • Missing security headers with limited impact
  • Issues requiring outdated or unsupported browsers
  • Reports without a clear proof-of-concept
  • Social engineering attempts
  • Physical security issues
  • Content, SEO or UI/UX concerns without security impact

Thank You

We appreciate anyone who helps keep Plate more secure. While we do not operate a formal bug bounty program, significant vulnerabilities may be eligible for a reward at our discretion. Regardless of the outcome, we will always treat your report with professionalism and respect.