We are grateful for security researchers and users reporting a vulnerability to us first. To ensure that your request is handled in a timely manner and we can keep users safe, please follow the below guidelines.

• Please do not report security vulnerabilities directly on GitHub.

• To report a vulnerability, please email admin@casdoor.org.