About us

Report a Vulnerability

Use this page to report a vulnerability discovered in one of our products or services. Anonymous reports are accepted, but contact information is appreciated in order to establish a proper line of communication.

Vulnerability reports will be processed and handled in accordance with the Udall Foundation's Vulnerability Disclosure Policy.

Location
Please describe the location of the product or service the vulnerability was discovered. For instance, a specific URL or screen. This information is required. (Maximum length: 500 characters)

Impact
Please describe the impact that exploiting the vulnerability has on the Udall Foundation. Examples include password exposure, database access, exposure of internal resources, etc.. This information is required.

Reproduction
Please describe the steps needed to reproduce the vulnerability. This can include proof of concept scripts or code. This information is required.

Contact Information
Please provide your name and email address, so we can contact you to confirm receipt of report and to provide updates on remediation of the vulnerability. This information is optional but encouraged.

Name:
Email:

Acknowledgement

By submitting a vulnerability, you acknowledge that you have no expectation of payment and that you expressly waive any future pay claims against the U.S. Government related to your submission.

Invalid code. Please try again.

Type the code from the image