H3110! N1C3 T0 H4V3 Y0U H3R3.

Please report all security vulnerabilities to support+security@pasal.com only.
Kindly follow the principles of responsible disclosure.

Scopes: 
All resources at pasal.com pasal.com.np and all subdomains.

Examples of Security Issues Eligible for Bounty:

1. Access to Pasal Nepal servers (the machine, mail service, database access, etc.)
2. Access to Pasal Nepal administrator accounts.
3. Access to Pasal Nepal customer details and similar sensitive information.
4. Access to Pasal Nepal platform using stolen credentials, phishing, etc.
5. Access to arbitrary/all customer accounts through any mechanism.