Skip to main content

Can you send me the findings from your vulnerability assessment?

Unfortunately, we cannot provide findings from vulnerability assessments. If you require such findings, you will need to arrange for the relevant assessments on your own.

The third-party service VAddy provides API-related diagnoses, and you can set up automatic integration through Kuroco's admin panel. Alternatively, we can also recommend other investigative services to suit your needs. Please contact us for more information.

Points to note

Sometimes, vulnerabilities can arise due to issues with front-end Javascript code or admin panel settings. Please verify that your system is free from the common sources of vulnerability below:

  • The API is retrieving more information than necessary.
  • The external domains providing your JavaScript libraries are not secure.
  • The JavaScript libraries that you are using are not secure.
  • Your API security settings have not been configured correctly.
  • Incorrect permissions were granted during member registration.

Other sources of vulnerability may be present. Therefore, we recommend that you verify any points of concern and consult your webmaster if needed.

Vulnerabilities caused by Kuroco

Notify our Support Team of your diagnosis results, and we will fix any issues promptly. However, please note that we may not be able to respond if:

  • The issue is non-critical.
  • We determine that no action is required.

More information


If you have any other questions, please contact us or check out Our Slack Community.