Haubot
Logo
  • الأصول
    • حسب الفئة
    • البناء والمعدات الثقيلة
    • النقل واللوجستيك
    • الزراعة والحراجة
    • الصناعة ومناولة المواد
    • الطيران والدعم الأرضي
    • البحري والمعدات المتخصصة
    • الطاقة وتوليد الكهرباء
    • النفط والغاز
    • الدفاع والأصول الحكومية
    • العلامات الشائعة
  • المزادات
  • Trade Hub
  • ماذا نفعل
    • الحلول
    • اللوجستيك
    • SecureTrade
    • عمليات التفتيش
    • التمويل
    • المكونات
    • داخل Haubot
    • مسيرتنا
    • رؤية المستقبل
    • كن شريكًا معنا
  • الأخبار
  • مركز المساعدة
الشبكةتسجيل الدخولإنشاء حساب

Security & Vulnerability Disclosure

Machine-readable contact: /.well-known/security.txt

Haubot International B.V. takes the security of its platform and its users seriously. If you believe you have found a security vulnerability in any Haubot service, we welcome your report and will work with you to verify and remediate it. This page describes how to reach us, what is in scope, and the rules we ask researchers to follow.

How to report


Email [email protected]. To help us triage quickly, please include:

  • A clear description of the issue and its potential impact.
  • Step-by-step instructions to reproduce it, including the affected URL, endpoint, or page.
  • Any proof-of-concept, request/response samples, or screenshots.
  • How we can contact you for follow-up.

For sensitive details you can encrypt your report to our OpenPGP key at /.well-known/openpgp-key.txt (fingerprint 5790 9E5B 4533 287C 3313 28A8 2758 5377 4AA4 493F).

Scope


In scope: the Haubot website and web application at haubot.com and its subdomains, the Haubot API, and the official Haubot mobile apps for iOS and Android.

Out of scope:third-party services and vendors we do not operate; findings that require physical access to a user's device; social engineering of Haubot staff or users; volumetric denial-of-service (DoS/DDoS) and rate-limit/brute-force testing; spam or content-injection that has no security impact; and automated scanner output without a demonstrated, reproducible vulnerability.

Rules of engagement & safe harbor


We ask that you act in good faith and:

  • Test only against accounts and data that belong to you. Do not access, modify, or destroy other users' data.
  • Do not degrade, disrupt, or run high-volume automated traffic against production services.
  • Stop and report as soon as you have established that a vulnerability exists; do not pivot further into the system.
  • Give us a reasonable time to remediate before disclosing the issue publicly, and do not share it with third parties in the meantime.

If you make a good-faith effort to comply with this policy during your research, we will consider your testing to be authorized, we will not pursue or support legal action against you for it, and we will work with you to understand and resolve the issue quickly.

What to expect from us


  • We aim to acknowledge your report within three business days.
  • We will keep you informed as we investigate and remediate.
  • With your permission, we are happy to credit you once the issue is resolved.

الأصول

البناء والمعدات الثقيلةالنقل واللوجستيكالزراعة والحراجةالصناعة ومناولة الموادالطيران والدعم الأرضيالبحري والمتخصصالطاقة والكهرباءالنفط والغازالدفاع والحكومة

الحلول

اللوجستيكSecureTradeعمليات التفتيشالتمويلالمكونات

وصول سريع

المزاداتTrade Hubالأخبارمركز المساعدة

من نحن

مسيرتنارؤية المستقبلكن شريكًا معنا

القانوني

شروط مزاد Seller-Managedشروط مزاد Haubot-Managedشروط إعلانات السوقشروط المشتريشروط خدمات المنصةشروط الاستخدامسياسة الخصوصيةسياسة ملفات تعريف الارتباط

اتصل بنا

دعم العملاء+31 970 1026-9569

Haubot
Haubot International B.V. ©Diemerhof 42, Diemen 1112 XN, Netherlands2007 – 2026