Coles Group Limited Vulnerability Disclosure Program

Coles is one of Australia’s leading retailers, with an extensive footprint of more than 1,800 retail outlets nationally. Coles employs more than 120,000 team members, engages with more than 8,000 suppliers, and welcomes millions of customers through its store network and digital platforms every week.

Coles is committed to delivering consistently high-quality fresh food, product innovation, long-term partnerships with suppliers and great value for its customers.

Coles understands the importance of securing our systems so we can continue to help Australians eat and live better every day. We are excited to work with highly skilled security researchers who can help us identify any weaknesses or vulnerabilities in our systems.

Good luck, and happy hunting!

For account sign ups please use your Bugcrowd ninja email address.

Ratings/Rewards:

For the initial prioritization/rating of findings, this program will use the Bugcrowd Vulnerability Rating Taxonomy. However, it is important to note that in some cases a vulnerability priority will be modified due to its likelihood or impact. In any instance where an issue is downgraded, a full, detailed explanation will be provided to the researcher - along with the opportunity to appeal, and make a case for a higher priority.