At CourtCorrect, security is our top priority. We value the security research community and encourage responsible disclosure of vulnerabilities to help us improve our platform. Through our Bug Bounty Programme, ethical hackers can report security issues and receive monetary rewards for valid findings.

Rewards

CourtCorrect offers financial rewards for confirmed security vulnerabilities, determined at our sole discretion based on the severity of the issue:

• Critical – High-impact vulnerabilities that could lead to data breaches, remote code execution, or full system compromise.

• High – Significant security risks such as privilege escalation, major data exposure, or persistent cross-site scripting.

• Medium – Moderate risks including misconfigurations, minor leaks, or security flaws with limited impact.

• Low – Low-risk vulnerabilities with minimal security implications.

Responsible Disclosure Guidelines

To participate in our Bug Bounty Programme, you must:

✔ Act in good faith and avoid disrupting CourtCorrect’s systems, data, or services.
✔ Refrain from exploiting, sharing, or publicly disclosing vulnerabilities before they are addressed.
✔ Provide detailed and reproducible steps to verify the issue.
✔ Allow CourtCorrect reasonable time to assess and remediate the vulnerability.

CourtCorrect does not provide rewards for:

✖ Issues related to outdated browsers or plugins.
✖ Social engineering, phishing, or physical security vulnerabilities.
✖ Denial-of-Service (DoS) attacks or spam techniques.

By submitting a report, you confirm that you comply with these guidelines and are legally permitted to participate. CourtCorrect reserves the right to assess eligibility and determine rewards at its discretion.

🔍 Think you’ve found a security vulnerability? Submit your report here.

CourtCorrect Ltd.

33 Percy Street, W1T 2DF, London

hello@courtcorrect.com

+442078673925