Vulnerability Disclosure Program.

Program Scope

MFour values the contributions of our customers and the security research community in helping us maintain the security and integrity of our products and services. We welcome responsible disclosure of vulnerabilities discovered within MFour systems.

If you believe you have found a security vulnerability, please submit your findings through our designated reporting process. Your efforts help us strengthen our platforms and better protect our users.

Submission Guidelines

To ensure we can review and address your report efficiently, please follow these guidelines:

• Use this form only for reproducible vulnerabilities identified in MFour systems.
• Provide enough detail for our team to clearly understand and reproduce the issue, including a proof of concept where applicable.
• Submit reports promptly after discovering a potential issue.
• Remove or redact any personal or sensitive information before submission.
• Do not disclose the vulnerability publicly or to any third party until MFour confirms that the issue has been resolved and the fix has been deployed.

Contact Information

We accept anonymous vulnerability submissions. However, without contact information, we will be unable to provide status updates or request additional details that may be necessary to validate and remediate the issue.

If you choose to provide contact information, MFour will make reasonable efforts to:

• Confirm receipt of your report in a timely manner.
• Notify you once the vulnerability has been validated and resolved.