Last Updated: May 10, 2026
This document explains how to report a security issue related specifically to the contents of this Writeups repository (advisories, PoC scripts, etc.).
For our full vulnerability disclosure policy, see the organization‑wide SECURITY.md.
Writeups are technical and complex. If you spot a factual mistake, a broken link, or outdated mitigation guidance, please let us know:
📧 team@reverseforge.dev
We review all corrections promptly and credit contributors who report significant fixes.
If you have discovered a security vulnerability in a third‑party product and believe it aligns with our research focus, you can responsibly disclose it to us. We welcome collaboration with independent researchers.
- We follow a 90‑day Coordinated Vulnerability Disclosure (CVD) timeline.
- We provide detailed technical analysis and work with you on the advisory.
- Your finding will be published in this repository after the disclosure window.
For the complete process and legal safe harbor, please read the organization SECURITY.md.
ReverseForge operates in good faith. We do not extort, threaten, or release details without a patch.
If you are a vendor and have concerns about an advisory, contact us at the email above.
ReverseForge — Forging exploit intelligence, responsibly.