At Licious, we take security of our applications and our customer's data very seriously. We have taken countless measures to make sure that our applications are safe and secure for everyone to use. Hence, we encourage and appreciate the work of security researchers to identify, and responsibly disclose the vulnerabilities identified in our in-scope applications.
If you (security researcher) are committed to follow this responsible disclosure policy and report the identified security vulnerability to us, we commit to:
Swiftly acknowledge your report submission and connect with you to understand the vulnerability.
Any mobile and/or web applications (iOS & Android) including backend API’s which is owned by Licious is scope of this program.
We accept vulnerabilities which possess security risk such as compromise or leak of users’/Licious private data, bypass system protection, or enable access to our Infrastructure.
The report should be submitted as per the below format.
Licious will not take legal action against the security researchers who identify and responsibly disclose the vulnerability and adhere to our Program Terms and Disclosure Policy.