{"id":5896,"date":"2022-02-11T04:37:17","date_gmt":"2022-02-11T04:37:17","guid":{"rendered":"http:\/\/buildxact.gsqtest1.com\/us\/?page_id=5896"},"modified":"2023-11-15T01:50:00","modified_gmt":"2023-11-15T00:50:00","slug":"responsible-disclosure","status":"publish","type":"page","link":"https:\/\/www.buildxact.com\/uk\/company\/responsible-disclosure\/","title":{"rendered":"Responsible Disclosure"},"content":{"rendered":"\t\t<div data-elementor-type=\"wp-page\" data-elementor-id=\"5896\" class=\"elementor elementor-5896\" data-elementor-post-type=\"page\">\n\t\t\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-6c53d9b elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"6c53d9b\" data-element_type=\"section\" data-e-type=\"section\" data-settings=\"{&quot;background_background&quot;:&quot;classic&quot;}\">\n\t\t\t\t\t\t\t<div class=\"elementor-background-overlay\"><\/div>\n\t\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-2714e85\" data-id=\"2714e85\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-005afe5 elementor-widget elementor-widget-heading\" data-id=\"005afe5\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<h1 class=\"elementor-heading-title elementor-size-default\">Responsible Disclosure<\/h1>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-2a8ffa76 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"2a8ffa76\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-8a64bff\" data-id=\"8a64bff\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-1698985f elementor-widget elementor-widget-text-editor\" data-id=\"1698985f\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\n<p>Here at Buildxact, we take security, and the privacy of our customer\u2019s data very seriously. We believe that working with skilled security researchers across the globe is crucial in identifying weaknesses in any technology.<\/p>\n\n<p>If you believe you\u2019ve found a security issue in our product or service, we encourage you to notify us. We welcome working with you to resolve the issue promptly. To proceed, you will need to navigate to <a href=\"https:\/\/app.buildxact.com\/uk\/signup.html?resellerCode=11251\"><strong>this special link to sign up<\/strong><\/a> for a free trial. This will help us identify that the trial is created to search for security issues in our product.<\/p>\n\n<p>Our Responsible Disclosure programme is managed by Bugcrowd as a\u00a0<strong>points-only\u00a0<\/strong>programme (monetary rewards are no longer paid).<\/p>\n\n<p><strong>Are you a Buildxact user? Have you found a bug?<\/strong><\/p>\n\n<p>If you are a Buildxact user and have found a bug in our software or any of our tools, please DO NOT report it using this process. This page is for security vulnerabilities only. For any issues relating to the functionality of Buildxact software, please visit here: <a href=\"\/au\/support-overview\/\">https:\/\/www.buildxact.com\/uk\/support-overview\/<\/a><\/p>\n\n<p><strong>Disclosure Policy<\/strong><\/p>\n\n<ul class=\"wp-block-list\">\n<li>If you are not an existing user, set up a Free Trial by clicking <a href=\"https:\/\/app.buildxact.com\/uk\/signup.html?resellerCode=11251\"><strong>this special link <\/strong><\/a>so we can identify that the trial was created to search for security issues.<\/li>\n<li>Let us know as soon as possible upon discovery of a potential security issue, and we\u2019ll make every effort to quickly resolve the issue.<\/li>\n<li>Do not take advantage of the vulnerability or problem you have discovered, for example by downloading more data than necessary to demonstrate the vulnerability or deleting or modifying other people\u2019s data.<\/li>\n<li>Do not reveal the problem to others until it has been resolved.<\/li>\n<li>Do not use attacks on physical security, social engineering, distributed denial of service, spam or applications of third parties, and<\/li>\n<li>Do provide sufficient information to reproduce the problem, so we will be able to resolve it as quickly as possible. Usually, the IP address or the URL of the affected system and a description of the vulnerability will be sufficient, but complex vulnerabilities may require further explanation.<\/li>\n<li>Provide us a reasonable amount of time to resolve the issue before any disclosure to the public or a third-party.<\/li>\n<li>Make a good faith effort to avoid privacy violations, destruction of data, and interruption or degradation of our service. Only interact with accounts you own or with the explicit permission of Buildxact, and the account holder.<\/li>\n<li>When reviewing your report, our decision is final as to whether we consider your report to be a security issue or not.<\/li>\n<\/ul>\n\n<p><strong>Exclusions<\/strong><\/p>\n\n<p>We\u2019d like to ask you to refrain from:<\/p>\n\n<ul class=\"wp-block-list\">\n<li>Denial of service<\/li>\n<li>Spamming<\/li>\n<li>Social engineering (including phishing) of Buildxact staff or contractors<\/li>\n<li>Any physical attempts against Buildxact property or data centres<\/li>\n<\/ul>\n\n<p><strong>How to submit a\u00a0<\/strong><strong>report<\/strong><\/p>\n\n<p>Fill in the form at the bottom of this page to submit your report.<\/p>\n\n<p>Bear in mind that:<\/p>\n\n<ul class=\"wp-block-list\">\n<li>We do not consider the following the following to be security issues, so please do not report any of the following:\n<ul>\n<li>Ability to sign up for multiple trial accounts\u00a0<\/li>\n<li>Ability to sign up for\u00a0a new trial after ending your first one\u00a0<\/li>\n<li>EXIF metadata not being stripped<\/li>\n<li>Ability to upload PHP\u00a0files (our system does not run PHP)\u00a0<\/li>\n<li>Any other business logic issue that does not represent a security vulnerability\u00a0<\/li>\n<\/ul>\n<\/li>\n<li>You must have set up a Free Trial account using <a href=\"\/au\/trial-for-free\/?resellercode=11251\">this special link<\/a> so we can identify it as an Ethical Hacking account.<\/li>\n<li>We run four localised versions of our WordPress site on four different domains. These are considered a single codebase, and if an issue is reported on one of them, we will consider it a duplicate if the same issue is reported on another one.<\/li>\n<li>Currently we do not publish a list of known security issues. It may be that an issue that you report is already known to us; if this happens, you may not be eligible for Bugcrowd points.<\/li>\n<\/ul>\n\n<p>Bugcrowd will action your submissions and start working with us and you within 3 business days. Once submissions are validated and triaged by Bugcrowd we commit to accepting\/reaching out on those within 5 business days of triage.<\/p>\n\n<p><strong>Bug Bounty<\/strong>\u00a0<\/p>\n\n<p>Buildxact used to offer a monetary bug bounty programme. However, we\u00a0<strong>no longer offer monetary rewards,\u00a0<\/strong>instead we now participate in Bugcrowd\u2019s points-based programme<\/p>\n\n<p><strong>Safe Harbor<\/strong><\/p>\n\n<p>When conducting vulnerability research according to this policy, we consider this research to be:\u00a0<\/p>\n\n<ul class=\"wp-block-list\">\n<li>Authorised in accordance with the Computer Fraud and Abuse Act (CFAA) (and\/or similar state laws), and we will not initiate or support legal action against you for accidental, good faith violations of this policy;\u00a0<\/li>\n<li>Exempt from the Digital Millennium Copyright Act (DMCA), and we will not bring a claim against you for circumvention of technology\u00a0controls;<\/li>\n<li>Exempt from restrictions in our Terms &amp; Conditions that would interfere with conducting security research, and we waive those restrictions on a limited basis for work done under this policy; and\u00a0<\/li>\n<li>Lawful, helpful to the overall security of the Internet, and conducted in good faith.\u00a0<\/li>\n<li>You are expected, as always, to comply with all applicable laws.\u00a0<\/li>\n<\/ul>\n\n<p>If at anytime you have concerns or are uncertain whether your security research is consistent with this policy, please inquire via <a href=\"mailto:support@bugcrowd.com\">support@bugcrowd.com<\/a> before going any further.<\/p>\n\n<p>Thank you for helping keep Buildxact and our users safe!<\/p>\n\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-ca62027 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"ca62027\" data-element_type=\"section\" data-e-type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-c5f24cc\" data-id=\"c5f24cc\" data-element_type=\"column\" data-e-type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t<div class=\"elementor-element elementor-element-790f018 elementor-widget elementor-widget-html\" data-id=\"790f018\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"html.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t<p><script src=\"https:\/\/bugcrowd.com\/00d98f59-0a10-411a-ac78-8844be89e983\/external\/script\" async=\"\" data-bugcrowd-program=\"https:\/\/bugcrowd.com\/00d98f59-0a10-411a-ac78-8844be89e983\/external\/report\"><\/script><\/p>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"<p>Responsible Disclosure\t\t<\/p>\n<p>Here at Buildxact, we take security, and the privacy of our customer\u2019s data very seriously. We believe that working with skilled security researchers across the globe is crucial in identifying weaknesses in any technology.<\/p>\n<p>If you believe you\u2019ve found a security issue in our product or service, we encourage you to notify us. We welcome working with yo<\/p>\n<div style=\"display:none;\" class=\"postcatlist\"><\/div>\n","protected":false},"author":1,"featured_media":0,"parent":61,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"elementor_header_footer","meta":{"_acf_changed":false,"footnotes":""},"contributing_author":[],"class_list":["post-5896","page","type-page","status-publish"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.2 (Yoast SEO v27.2) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Responsible Disclosure | Buildxact UK<\/title>\n<meta name=\"description\" content=\"This page lists the responsible disclosure for the construction management software company Buildxact and only for security vulnerabilities.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.buildxact.com\/uk\/company\/responsible-disclosure\/\" \/>\n<meta property=\"og:locale\" content=\"en_GB\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Responsible Disclosure\" \/>\n<meta property=\"og:description\" content=\"This page lists the responsible disclosure for the construction management software company Buildxact and only for security vulnerabilities.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.buildxact.com\/uk\/company\/responsible-disclosure\/\" \/>\n<meta property=\"og:site_name\" content=\"Buildxact UK\" \/>\n<meta property=\"article:modified_time\" content=\"2023-11-15T00:50:00+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.buildxact.com\/uk\/company\/responsible-disclosure\/\",\"url\":\"https:\/\/www.buildxact.com\/uk\/company\/responsible-disclosure\/\",\"name\":\"Responsible Disclosure | Buildxact UK\",\"isPartOf\":{\"@id\":\"https:\/\/www.buildxact.com\/uk\/#website\"},\"datePublished\":\"2022-02-11T04:37:17+00:00\",\"dateModified\":\"2023-11-15T00:50:00+00:00\",\"description\":\"This page lists the responsible disclosure for the construction management software company Buildxact and only for security vulnerabilities.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.buildxact.com\/uk\/company\/responsible-disclosure\/#breadcrumb\"},\"inLanguage\":\"en-GB\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.buildxact.com\/uk\/company\/responsible-disclosure\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.buildxact.com\/uk\/company\/responsible-disclosure\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Company\",\"item\":\"https:\/\/www.buildxact.com\/uk\/company\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Responsible Disclosure\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.buildxact.com\/uk\/#website\",\"url\":\"https:\/\/www.buildxact.com\/uk\/\",\"name\":\"Buildxact UK\",\"description\":\"Estimating &amp; Job Management Software\",\"publisher\":{\"@id\":\"https:\/\/www.buildxact.com\/uk\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.buildxact.com\/uk\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-GB\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.buildxact.com\/uk\/#organization\",\"name\":\"Buildxact UK\",\"url\":\"https:\/\/www.buildxact.com\/uk\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-GB\",\"@id\":\"https:\/\/www.buildxact.com\/uk\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.buildxact.com\/uk\/wp-content\/uploads\/sites\/15\/2022\/01\/buildxact-logo.png\",\"contentUrl\":\"https:\/\/www.buildxact.com\/uk\/wp-content\/uploads\/sites\/15\/2022\/01\/buildxact-logo.png\",\"width\":278,\"height\":68,\"caption\":\"Buildxact UK\"},\"image\":{\"@id\":\"https:\/\/www.buildxact.com\/uk\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Responsible Disclosure | Buildxact UK","description":"This page lists the responsible disclosure for the construction management software company Buildxact and only for security vulnerabilities.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.buildxact.com\/uk\/company\/responsible-disclosure\/","og_locale":"en_GB","og_type":"article","og_title":"Responsible Disclosure","og_description":"This page lists the responsible disclosure for the construction management software company Buildxact and only for security vulnerabilities.","og_url":"https:\/\/www.buildxact.com\/uk\/company\/responsible-disclosure\/","og_site_name":"Buildxact UK","article_modified_time":"2023-11-15T00:50:00+00:00","twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.buildxact.com\/uk\/company\/responsible-disclosure\/","url":"https:\/\/www.buildxact.com\/uk\/company\/responsible-disclosure\/","name":"Responsible Disclosure | Buildxact UK","isPartOf":{"@id":"https:\/\/www.buildxact.com\/uk\/#website"},"datePublished":"2022-02-11T04:37:17+00:00","dateModified":"2023-11-15T00:50:00+00:00","description":"This page lists the responsible disclosure for the construction management software company Buildxact and only for security vulnerabilities.","breadcrumb":{"@id":"https:\/\/www.buildxact.com\/uk\/company\/responsible-disclosure\/#breadcrumb"},"inLanguage":"en-GB","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.buildxact.com\/uk\/company\/responsible-disclosure\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.buildxact.com\/uk\/company\/responsible-disclosure\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Company","item":"https:\/\/www.buildxact.com\/uk\/company\/"},{"@type":"ListItem","position":2,"name":"Responsible Disclosure"}]},{"@type":"WebSite","@id":"https:\/\/www.buildxact.com\/uk\/#website","url":"https:\/\/www.buildxact.com\/uk\/","name":"Buildxact UK","description":"Estimating &amp; Job Management Software","publisher":{"@id":"https:\/\/www.buildxact.com\/uk\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.buildxact.com\/uk\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-GB"},{"@type":"Organization","@id":"https:\/\/www.buildxact.com\/uk\/#organization","name":"Buildxact UK","url":"https:\/\/www.buildxact.com\/uk\/","logo":{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.buildxact.com\/uk\/#\/schema\/logo\/image\/","url":"https:\/\/www.buildxact.com\/uk\/wp-content\/uploads\/sites\/15\/2022\/01\/buildxact-logo.png","contentUrl":"https:\/\/www.buildxact.com\/uk\/wp-content\/uploads\/sites\/15\/2022\/01\/buildxact-logo.png","width":278,"height":68,"caption":"Buildxact UK"},"image":{"@id":"https:\/\/www.buildxact.com\/uk\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/www.buildxact.com\/uk\/wp-json\/wp\/v2\/pages\/5896","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.buildxact.com\/uk\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.buildxact.com\/uk\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.buildxact.com\/uk\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.buildxact.com\/uk\/wp-json\/wp\/v2\/comments?post=5896"}],"version-history":[{"count":0,"href":"https:\/\/www.buildxact.com\/uk\/wp-json\/wp\/v2\/pages\/5896\/revisions"}],"up":[{"embeddable":true,"href":"https:\/\/www.buildxact.com\/uk\/wp-json\/wp\/v2\/pages\/61"}],"wp:attachment":[{"href":"https:\/\/www.buildxact.com\/uk\/wp-json\/wp\/v2\/media?parent=5896"}],"wp:term":[{"taxonomy":"contributing_author","embeddable":true,"href":"https:\/\/www.buildxact.com\/uk\/wp-json\/wp\/v2\/contributing_author?post=5896"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}