Loading...

Security Policy

We take the security of our systems seriously. If you discover a vulnerability, we appreciate your responsible disclosure.

📧 Reporting a Vulnerability

If you believe you have found a security vulnerability, please report it to:

Please include as much detail as possible:
  • Description of the issue
  • Steps to reproduce
  • Potential impact
  • Proof of concept (if available)

📜 Scope

This policy applies to all publicly accessible systems owned by BestSMM, including:

  • https://bestsmm.pk
  • https://www.bestsmm.pk
  • API endpoints under our control

🚫 Out of Scope

The following are NOT eligible for testing:
  • Third-party services or plugins
  • Social engineering attacks
  • Physical attacks
  • Spam or DDoS attempts

⚖️ Rules of Engagement

  • Do not access or modify user data
  • Do not disrupt services
  • Do not perform destructive testing
  • Only test within scope

⏱ Response Time

We aim to respond within 3–7 business days.

🏆 Responsible Disclosure Rewards

We may offer recognition or rewards depending on severity and quality of the report.

🔐 Safe Harbor

If you follow this policy in good faith, we will not pursue legal action against you.

📅 Updates

This policy may be updated without prior notice.

Last updated: 2026-05-20

Quick Links

Contact Informations

  • Tel: +923 111 766 663
  • E-mail: support@bestsmm.pk
  • Working Hour: 24/7