Reporting Guidelines

 

Qualifying Security Bugs

All bugs that are reported are qualified based on its impact on customer’s production data.

We will consider other security vulnerabilities if it is making an impact and exploitable with a working non-intrusive POC.

 

In Scope Domains
  • *.freshworks.com
  • *.freshdesk.com
  • *.freshservice.com
  • *.freshsales.io
  • *.freshcaller.com
  • *.freshteam.com
  • *.freshchat.com
  • *.freshmarketer.com
  • *.freshconnect.io
  • *.freshping.io
Bugs Severity

Freshworks will define the severity of the issue based on the impact and the ease of exploit. 

Response Time
Response Type Time
Acknowledgement Within 24 hours
Time taken to resolve Based on the Severity
Hall of Fame

We want to thank and recognize the following individuals who have responsibly disclosed one or more security vulnerabilities in the Freshworks suite of products and are enabling us to better serve our customers.

  • Gopikrishna
  • Neeraj Sonaniya
  • Samir Hadji
  • Rojan Rijal
  • Marek Szustak
  • Vignesh Jothiraj
  • Deepali Sarjerao Malekar
  • Prasanna P R
  • John Steven Bullecer
  • Havoc Guhan
  • Muthukumar Marikani
  • Ratnadip Gajbhiye
  • Virendra Yadav
  • Ahsan Khan
  • Allan Jay Dumanhug
  • Nor Win
  • Paulos Yibelo
  • Kalpesh Makwana