Please contact us immediately if you discover any security vulnerabilities on Homeforfive.com. We take all valid security reports seriously and will investigate and resolve confirmed issues as quickly as possible.

Before submitting a report, please review the following guidelines and principles.

SECTION 1 – CORE PRINCIPLES

Homeforfive will not initiate legal action against security researchers who follow these guidelines in good faith.

We ask you to:

  • Allow reasonable time for us to investigate and fix the issue before public disclosure
  • Respect user privacy and avoid accessing personal data without consent
  • Act in good faith and avoid disrupting services or harming users
  • Do not exploit vulnerabilities beyond what is necessary for reporting
  • Follow applicable laws at all times

SECTION 2 – BOUNTY PROGRAM

Homeforfive appreciates responsible security research and may offer rewards for valid vulnerability reports. Bounty rewards are granted at our discretion based on severity and impact.

To qualify for a bounty, you must:

  • Follow all core principles
  • Report a valid security vulnerability that poses real risk
  • Submit reports responsibly without public disclosure first

SECTION 3 – NON-ELIGIBLE SUBMISSIONS

The following issues are not eligible for rewards:

  • Spam or social engineering reports unrelated to system security
  • Missing SPF/DMARC records
  • Clickjacking on non-sensitive pages
  • Rate limiting or brute force without impact
  • Denial of Service (DoS) attacks
  • Issues requiring rooted/jailbroken devices
  • Outdated browser or extension vulnerabilities

HOW TO SUBMIT A REPORT

Please include detailed information such as steps to reproduce, potential impact, and supporting evidence (screenshots or code snippets).

📧 Primary contact: support@homeforfive.com

CONTACT INFORMATION

📞 Phone:
+1 (323) 792-3646

✉️ Email:
support@homeforfive.com

📍 Address:
20640 Mary Way, Bend, OR 97701, USA