To report a security vulnerability, please send a report to security@axelor.com.
This address can be used for all of Axelor's products. Do not report non-security-impacting bugs through this channel.
Provide a descriptive title and in the description of the report, include the following information :
- Detailed steps to reproduce the vulnerability (POC scripts, screenshots, and logs are all helpful).
- Description of the effects of the vulnerability.
- How the vulnerability affects the project usage.
- The affected versions.
While submitting, please remove or obfuscate any private data.
After it has been submitted, the Security Team will investigate the vulnerability, determine its effects and criticality and notify to the reporter.