Lumin logo
  • Lumin Products

    • AgreementGen

      Your agreement drafting sidekick

    • Lumin Sign

      Simple and secure digital signing

    • Lumin PDF

      Edit, collaborate, and share PDFs

    • Lumin AI

      Supercharge your docs

    Download Apps
    API and Integrations

    • eSign API

      Seamless eSignature integration

    • Integrations

      Streamline your workflow with ease

  • AgreementGen

    • AI agreement generator

    • AI agreement editor

    • NDA generator

    • Lease agreement generator

    • Employment contract creator

    • Terms and conditions generator

    • Operating agreement generator

    • Non-compete agreement generator

    • Business plan generator

    Lumin Sign

    • Sign PDF

    Lumin PDF

    • Edit PDF

    • Edit PDF text

    • Collaboration

    • Create fillable PDF

    • Merge PDF

    • Unlock PDF

    • Integrate Google

    All tools

  • By use cases

    Streamline efficiency

    Use the cloud to reduce the burden of countless tools

    Build relationships

    Collaborate and negotiate with a few clicks

    Secure with confidence

    Comply and stay with global security standards

    Onboard from anywhere

    Automate contract admin to seal deals faster

    Accelerate collaboration

    Make teamwork seamless with a centralized suite of tools

    Work on site

    Fast-track fieldwork with offline mode for mobile

  • Discover

      Blog

      News and views on collaborative workflows

      Template Discovery

      Find, fill and sign 5,000+ free online forms

      Customer Stories

      Discover companies creating more impact with less admin

    Support

      Lumin 101

      New here?
      Learn the basics

      Help Center

      Your complete manual to Lumin and Lumin Sign

  • Enterprise
  • Pricing
  • Request a demo
Try for freeSign in
Request a demo
Sign in
Try for free

Bug bounty program

Find security issues in Lumin to earn rewards and secure your spot in our Hall of Fame through our vulnerability disclosure program.

Table of contents

  • Policy
  • Rewards
  • Rules for reporting
  • In scope
  • Out of scope
  • What we are looking for
  • What we are not looking for

Policy

The following guidelines give you an idea of what we usually pay out for different classes of security issues. Low-quality issues may be rewarded below these tiers, so please make sure that there is enough information for us to be able to reproduce your issue and step-by-step instructions including how to reproduce your issue. Screenshots are also helpful, but please make sure to not make these public before submitting them to follow our program’s rules.

Rewards

Rules for reporting

  1. Report a qualifying vulnerability that is in the scope of our program (below).
  2. Be the first person to report the vulnerability.
  3. Be reasonable with automated scanning methods so as to not degrade services.
  4. Refrain from disclosing the vulnerability until we've addressed it.
  5. NEVER try to gain access to a real user's account or data.
  6. You must not leak, manipulate, or destroy any user data.
  7. Do not impact users with your testing.
  8. For mobile crashes/ANRs: include the device model, OS version (Android/iOS), and Lumin app version. Share relevant crash logs or recordings if possible.

In scope

  1. app.luminpdf.com
  2. luminpdf.com
  3. Android & iOS applications
  4. sign.luminpdf.com

Out of scope

  1. tools.luminpdf.com
  2. help.luminpdf.com

What we are looking for

  1. Cross-site scripting (XSS)
  2. Cross-site request forgery (CSRF)
  3. Insecure direct object reference (IDOR)
  4. Account takeovers
  5. SQL injection
  6. Authentication flaws
  7. Remote code execution (RCE)
  8. Server-side request forgery (SSRF)
  9. XML External Entity Attacks (XXE)
  10. Crashes or ANRs on the mobile app
  11. Anything not listed but important

What we are not looking for

  1. Vulnerabilities requiring physical access to the victim's unlocked device
  2. Denial of Service attacks
  3. Brute force attacks
  4. Spam or social engineering techniques
  5. Content spoofing
  6. Best practices concerns
  7. Issues relating to password policy
  8. Issues relating to token lifetime
  9. User enumeration
  10. Full path disclosure on any property
  11. CSRF-able actions that do not require authentication (or a session) to exploit
  12. Reports related to missing security headers
  13. CSV injection
  14. Reverse tabnabbing
  15. Bugs that do not represent any security risk
  16. Crashes and ANR issues that are not reproducible
  17. Vulnerabilities that are limited to unsupported browsers

How to report?

Please send all security reports to [email protected]

Lumin tools

Lumin PDF

Lumin PDF

  • Organize
    Merge PDF
    Merge PDF
    Split PDF
    Split PDF
    Delete PDF page
    Delete PDF page
    Compress PDF
    Compress PDF
    Rotate PDF
    Rotate PDF
    Organize PDF
    Organize PDF
    Extract PDF
    Extract PDF
    AI PDF
    AI PDF summarizer
    AI PDF summarizer
    Chat with PDF
    Chat with PDF
    Scan
    PDF OCR
    PDF OCR
    Scan PDF
    Scan PDF
  • Edit & annotate
    Edit PDF
    Edit PDF
    Crop PDF
    Crop PDF
    Annotate PDF
    Annotate PDF
    Edit PDF text
    Edit PDF text
    Create fillable PDF
    Create fillable PDF
    PDF reader
    PDF reader
    Redact PDF
    Redact PDF
    More
    Unlock PDF
    Unlock PDF
    Flatten PDF
    Flatten PDF
    Protect PDF
    Protect PDF
  • Convert to PDF
    PDF converter
    PDF converter
    JPG to PDF
    JPG to PDF
    PPT to PDF
    PPT to PDF
    Word to PDF
    Word to PDF
    Excel to PDF
    Excel to PDF
    PNG to PDF
    PNG to PDF
    Convert from PDF
    PDF to PNG
    PDF to PNG
    PDF to JPG
    PDF to JPG
    PDF to Word
    PDF to Word
    PDF to PPT
    PDF to PPT
    PDF to Excel
    PDF to Excel
AgreementGen

AgreementGen

  • AI agreement generator
    AI agreement generator
    AI agreement editor
    AI agreement editor
    NDA generator
    NDA generator
    Lease agreement generator
    Lease agreement generator
    Employment contract creator
    Employment contract creator
    Terms and conditions generator
    Terms and conditions generator
    Operating agreement generator
    Operating agreement generator
    Non-compete agreement generator
    Non-compete agreement generator
    Business plan generator
    Business plan generator
Lumin Sign

Lumin Sign

  • Sign PDF
    Sign PDF

  • Product

    • Lumin
    • Lumin Sign
    • AgreementGen
    • eSign API
    • Features
    • Plans & Pricing
    • Google Workspace
      Lumin for Slack
      Lumin for Chrome
      Lumin for Claude
      See all

  • Solutions

    • Streamline efficiency
    • Onboard from anywhere
    • Accelerate collaboration
    • Build relationships
    • Secure with confidence
    • Work on site

  • Learn & Discover

    • Help Center
    • Blog
    • Lumin 101
    • Customer Stories
    • Templates
    • Template categories
    • Template collections

  • Company

    • Who we are
    • Our mission
    • Careers
    • Become a partner

  • Security

    • Compliance & features
    • Personal data
    • Privacy policy
    • Terms of use
    • Status
    • Bug bounty program

  • Download

    • iOS & Android
    • Mac & Windows

    Contact

    • Support
    • Sales
    • Request a Demo

  • Contact

    • Support
    • Sales
    • Request a Demo
Google Cloud Partner

© 2014–2026 Lumin PDF Corporation | San Francisco, United States | All rights reserved

English
  • English
  • Español
  • Tiếng Việt
  • Português
  • Français