Cube

Bug Reporting

Where to report security issues, bug-bounty findings, and regular account problems.

Mar 27, 2025

Security disclosures

If you believe you found a security vulnerability, report it through Cube's bug bounty program at HackenProof or email security-disclosure@cube.exchange.

Regular product bugs

For product issues that do not involve a sensitive security finding, contact support through in-app chat or email support@cube.exchange.

What to include

  • The page or route where the issue happened.
  • Exact steps to reproduce it.
  • Your device, browser, and approximate time of the incident.
  • Screenshots or screen recordings when they help explain the problem.

Do not send secrets

Never include passwords, recovery phrases, private keys, or full API secrets in a bug report.