Security - How To Report a Vulnerability

Please note that this site provides information for developers and security professionals. If you are a SharpSpring user and have a security or system issue with your account, please submit a support request via the normal channels.

If you believe you’ve found a security vulnerability in one of our products or platforms, please send it to us by emailing disclosures@sharpspring.com. We prefer that the submission be encrypted using our public PGP key posted below.

Please include the following details with your report:

  • A description of the location and potential impact of the vulnerability.
  • A detailed description of the steps required to reproduce the vulnerability (POC scripts, screenshots, and compressed screen captures are all helpful to us).

You will receive an automated response from our ticketing system with a tracking ID, which will be used for all future communication between you and our engineers. Please refrain from submitting multiple reports for the same vulnerability as this will slow down the verification and remediation process.

Click the gray box below to copy our public PGP key to your clipboard or download the pdf file

-----BEGIN PGP PUBLIC KEY BLOCK-----

mQENBF5Fhh4BCACcHZzfK6H4iaGntAIzu9PMhxXXVkCUIBtE+8uRmibT+3E3gH9g
3T94yZRbwQiFH8ry6zs0Gwv+j+zvqlC5NA4N6Ig4RAdoRZFa9GZQcOja7AWdkTJe
j1t2GjzLy+DHMG1WrqC0W0RcSHqi8veXhhKM6GfphDBv5Su+suFJlwicymOjSYWW
K+B/ihDZvZn2nWwY8DXJu5Ho8TYjcYyA7xJx+tlgy5nKNCVw6Iz5jCq+MGQ01/HX
Ov4s4bD77p8At/0DmKU7ro16QUeGWB3x2o9Ar3AxcdghSwRq3O8FhrVKxoft7AuL
ppUCqUI7IwdUBhTUKJ9hXpZxBSKnig3Ze3LvABEBAAG0Q1NoYXJwU3ByaW5nIFZ1
bG5lcmFiaWxpdHkgRGlzY2xvc3VyZXMgPGRpc2Nsb3N1cmVzQHNoYXJwc3ByaW5n
LmNvbT6JAVQEEwEKAD4WIQTG2Vp8qIuKFUNfgEAulQ451WK/HwUCXkWGHgIbAwUJ
A8JnAAULCQgHAwUVCgkICwUWAgMBAAIeAQIXgAAKCRAulQ451WK/H+V5B/9JExtL
ZsfVBaICl8DMfYUcnKqBBAl5cJEsFEG96EGCjYXYXWp74YKUPKtumsqyc7/6pR/C
29r8K57ktc6KFHPQR9MNk/Jtcr/w8T00gR/xsgbZlZLE7dBdYKeSfqA9fBwVksZx
t0+4z5qeUyuRYgxFRtIs7+fK9pAmVbZ67Vvi8M8jw8fmipfb906aNxho4UKiHovj
7HLNbguUsLtwuYeaPr0ts5pzjalABaD13gk7YOzoxprKv42i5vCeW56qYW11sjaf
z5PUzqeKy07+aUNE9pOleoam7L/09CBSp0yN76nHTyenNd4i5dh7RBuVMDGT/EAP
cu1wvEygK/SuLr0yuQENBF5Fhh4BCADvmpB2GISdvS1JQFkEVgOOgxdVQFhgYX3S
OCCUHymXQBHNT7tzhBMjZ5EcTj838b0fl6yWAG3s/06jKvmJbtzpxt03oXXJkeMC
7JrMxrZk7jcbbA52GJjxpO3TZseVsjT4QURI9zjMskqTv+wsy3O/S1YelyBUeX6T
1qtErLd8M0uw6635g/n/YLQuOym7UbBCuX65F67fM8B6hFnOm83HzepbvHI25UOK
pJ2XDJAws9FElNnjNanquceoDlvvR69Cwafgege8l4zlASMzoI1UOtlgD1lSxfWY
c1LTDblaAaPPgNiFwYk92WICXuNbbJsm7Xww3Mw7hL7wYZUvzeLNABEBAAGJATwE
GAEKACYWIQTG2Vp8qIuKFUNfgEAulQ451WK/HwUCXkWGHgIbDAUJA8JnAAAKCRAu
lQ451WK/H0oDB/9/kz1bh0OUxVLYh0EJNXKe7caEQhSnFVhKjp3m/MOPMKAUJVz/
wb/Y/vv/uY2md7RSOq9N7rioQu7S/G+hJpUmeRw3PU8KsiCwKuAl6hgQSELx8Ytu
toLjZz+l72xUNKeotRmBGfAnrpe8kbp5IbUjf7EdQ8RJsktnnMr5FWRs2PZPxTqD
JFARvrqIdAj64bLX8E/BIaVFSZ3amcC9H2P8VQL7QwUlmH/izNMnZPKhJ7Ntn20T
UCTcfsOOXETOUrGgoZY8v417l/gMPgL0CzAs8LG3E5+l8MHZ3UZ9fSijB1DWka/y
r5wW5nh+ekJanRvgidZJIhCz3ndprcBIyDPp
=m30S

-----END PGP PUBLIC KEY BLOCK-----