Thank you for helping keep Horilla CRM and its users secure.
Horilla CRM is under active development. Security updates are currently provided for the latest stable release line and the immediately previous stable release line.
| Version | Supported |
|---|---|
| 1.8.x | ✅ |
| 1.7.x | ✅ |
| 1.6.x | ❌ |
| < 1.6 | ❌ |
Please do not report security vulnerabilities through public GitHub issues, pull requests, discussions, or other public channels.
Instead, please use one of the following private channels:
- GitHub private vulnerability reporting for this repository, if enabled.
- Email the maintainers at info@horilla.com.
When submitting a report, please include:
- A clear description of the issue
- The affected version(s)
- Steps to reproduce
- Any proof of concept, screenshots, or logs
- Your assessment of impact
- We aim to acknowledge new reports within 3 business days.
- We aim to provide an initial assessment within 7 business days.
- If the report is accepted, we will work on a fix and coordinate disclosure with the reporter.
- If the report is declined, we will explain why, when possible.
Please allow us reasonable time to investigate and remediate reported issues before any public disclosure.
We appreciate responsible disclosure and will make every effort to keep reporters informed throughout the process.