It is not a difficult thing to discovery 0day for security researchers, and to get the recognition they deserve from security circles, but how to report bugs to security companies? It is inevitable to have vulnerabilities in security products for security companies, and to get the recognition from their users and circles, but how to deal with the vulnerabilities reported from researchers? In Februarys Free Bugs Hunt, we assist fix many browsers bugs including IE, chrome, Opera, firefox, Safari, QQ ,360 , Maxthon ,aliyun, Baidu etc. This paper will share some undisclosed details about CVE-2012-1875 with you. The real communication story with security companies to tell you the problems we currently encountered during the disclosure process of vulnerabilities. We try to find a win-win way both researchers and security companies to accept.