Capital.com Public API · Vulnerability Disclosure

Capital Com Public Api Vulnerability Disclosure

Vulnerability disclosure

Capital.com Public API runs a coordinated vulnerability disclosure program on Intigriti. A machine-readable /.well-known/security.txt is served. A dedicated security contact is published.

CFDCommoditiesCryptocurrencyFinancialForexIndicesMarket DataSharesStreamingTradingWebSocket
Program: Intigriti security.txt present

Disclosure Policy

Policy

Security Contact

Contact
https://app.intigriti.com/programs/capitalcom/capitalcom/detail

Source

Vulnerability Disclosure

Raw ↑
generated: '2026-07-11'
method: searched
probe: true
source: https://capital.com/.well-known/security.txt
policy:
- https://app.intigriti.com/programs/capitalcom/capitalcom/detail
contact:
- https://app.intigriti.com/programs/capitalcom/capitalcom/detail
evidence:
- source: https://capital.com/.well-known/security.txt
  kind: security.txt (live probe)