Skip to content

Security: cmderdev/cmder

SECURITY.md

Security Policy

Supported Versions

Version Supported
1.3.x
< 1.3

Reporting a Vulnerability

If you discover a security issue in our project, please report it to MartiUK. We will acknowledge your email within 24 hours and provide a more detailed response within 48 hours. We will try to fix the issue as soon as possible and inform you when a new version is released.

Please include as much of the information listed below as you can to help us better understand and resolve the issue:

  • The nature of the issue
  • The affected source file(s) with full paths
  • The location of the vulnerable code (tag/branch/commit or direct URL)
  • Any special configuration needed to reproduce the issue
  • Detailed steps to reproduce the issue
  • Proof-of-concept or exploit code (if possible)
  • The impact of the issue, including how an attacker could exploit it

Please do not disclose the vulnerability publicly until we have resolved it.

Learn more about advisories related to cmderdev/cmder in the GitHub Advisory Database