Skip to content
/ glpi Public
forked from glpi-project/glpi

Security: stweil/glpi

Security

SECURITY.md

Security Policy

⚠️ Please never use standard issues to report security problems; vulnerabilities are never published before a fix release is available. ⚠️

Critical advisories are published one month after the release. All other advisories are published one week after the fix release.

Reporting a Vulnerability

If you found a security issue, please contact us by:

  • a mail to [glpi-security AT ow2.org]
  • open an advisory on github

You should provide us all details about the issue and the way to reproduce it. You may also provide a script that can be used to check the issue exists.

Once the report will be handled, and if the issue is not yet fixed (or in progress) we'll add it to the GitHub security tab, and add you as observer. Meanwhile, you will reserve a CVE for the issue.

Thank you for improving the security of glpi.

Supported Versions

Version Supported
10.0.x ✔️
9.5.x
9.4.x
9.3.x
9.2.x
< 9.2

There aren’t any published security advisories