If you believe you have found a security vulnerability, we encourage you to let us know right away. We will investigate all legitimate reports and do our best to quickly fix the problem.
Please visit bugcrowd.com/etsy to submit valid security vulnerabilities. If this isn’t feasible, you can email security@etsy.com.