Security/vulnerability reports should not be submitted through GitHub issues or public discussions, but instead please send your report to security@opencdms.org.

Please follow the contributor guidelines when submitting a vulnerability report.

The OpenCDMS Project Technical Team (PTT) will release patches for security vulnerabilities for the following versions: