SECURITY VULNERABILITY DISCLOSURE POLICY

At The Hot Corner, we take the security of our customers and systems seriously. If you believe you have discovered a security vulnerability on our website or services, we encourage you to report it to us immediately.

We review all legitimate reports and aim to resolve confirmed issues as quickly as possible.

Before Reporting

We kindly ask that you:

  • Do not publicly disclose the vulnerability before we have had a reasonable time to investigate and fix it
  • Do not access, modify, or delete data that does not belong to you
  • Do not disrupt our services or attempt denial-of-service attacks
  • Do not exploit the issue beyond what is necessary to demonstrate the vulnerability
  • Comply with all applicable laws and regulations while testing

Fundamentals (Safe Harbor)

If you follow these principles when reporting a vulnerability to The Hot Corner, we will not initiate legal action against you for your good-faith research.

We value responsible disclosure and ethical security research.

Bounty Program

We may offer rewards for qualifying security reports that help improve our platform.

Bounties are awarded at The Hot Corner’s sole discretion and depend on:

  • Severity of the vulnerability
  • Potential impact on users or systems
  • Quality and clarity of the report
  • Ease of reproduction

Eligibility Requirements:

  • You must follow the responsible disclosure guidelines above
  • The report must describe a valid, reproducible security issue
  • The issue must not have been previously reported

Rewards (Maximum Guidelines)

Critical Severity – up to $200
Examples: Remote Code Execution, full account takeover, major authentication bypass, SQL injection with sensitive data exposure

High Severity – up to $100
Examples: Stored XSS affecting users, privilege escalation, sensitive internal data exposure, insecure authentication handling

Medium Severity – up to $50
Examples: Business logic flaws, insecure direct object references

Low Severity – Recognition Only
Examples: Open redirects, minor information leaks, low-impact XSS

Submission Guidelines

To report a vulnerability, please contact us with:

  • A clear description of the issue
  • Steps to reproduce the vulnerability
  • Any relevant screenshots or proof-of-concept (if safe)

We reserve the right to review, validate, and determine eligibility for any bounty reward.

Contact Information

The Hot Corner
Address: 2980 Nostrand Ave, Brooklyn, NY 11229, United States

Phone: +1 718 252 1555

Email: support@thehotcorner.shop

Website: thehotcorner.shop