Sema software neon logo
Sema software neon logo

Have a security concern about Sema?

Have a security concern about Sema?

If you find a serious security issue such as any of the following issues, please contact us with relevant details including steps to reproduce or a proof-of-concept.

  • Injection vulnerabilities

  • Authentication or session problems

  • Improper access to sensitive data

  • Broken access controls

  • Cross-site scripting

  • Anything from the OWASP Top 10 Project

Upon discovering a vulnerability, we ask that you act in a way to protect our users' data:

  • Inform us as soon as possible.

  • Test against fake data and accounts, not our users' private data (please ask if you'd like a free account to work on this).

  • Work with us to close the vulnerability before disclosing it to others.

Sema does not have a bounty program.

We do not offer bug bounties for discovered vulnerabilities. We hope that if you discover vulnerabilities in the course of your work that you share them with us so we can improve the health of the internet ecosystem.

Report your security concerns to Sema

If you have found a vulnerability in Sema, please contact our security team by email at support@semasoftware.com

Email Us