Security

SECURITY.md

Security Policy

Supported Versions

Version	Supported
4.x	✅
3.x	✅
< 3.0	❌

Critical vulnerabilities will be ported as far back as possible.

Reporting a Vulnerability

Report a security vulnerability directly to the maintainers by sending an email to [email protected] or by reporting a vulnerability to the NPM and Github security teams.

File System Bounds Escape
GHSA-pmw4-jgxx-pcq9 published Dec 16, 2020 by matt-forster

Moderate
Server-Side Request Forgery
GHSA-jw37-5gqr-cf9j published Aug 17, 2020 by matt-forster

Critical

Learn more about advisories related to QuorumDMS/ftp-srv in the GitHub Advisory Database