[GH-ISSUE #270] Security issue #195

New issue

Closed

opened 2026-03-02 15:56:40 +03:00 by kerem · 1 comment

kerem commented

2026-03-02 15:56:40 +03:00

Owner

Originally created by @jorgemorgado on GitHub (Dec 25, 2019).
Original GitHub issue: https://github.com/prasathmani/tinyfilemanager/issues/270

What is the best way to contact the application developer(s) privately? I would like to report a security issue which can expose the compromised target and doing a pull request (with the risk of disclosure) might not be the best way. Also, there is no "Security" label on this project and there should be one.
Shall I contact the CCP Programmers email address (the one on the PHP header)? Will this reach the correct people?

Originally created by @jorgemorgado on GitHub (Dec 25, 2019). Original GitHub issue: https://github.com/prasathmani/tinyfilemanager/issues/270 What is the best way to contact the application developer(s) privately? I would like to report a security issue which can expose the compromised target and doing a pull request (with the risk of disclosure) might not be the best way. Also, there is no "Security" label on this project and there should be one. Shall I contact the CCP Programmers email address (the one on the PHP header)? Will this reach the correct people?

kerem

2026-03-02 15:56:40 +03:00

closed this issue
added the
suggestion
label

kerem commented

2026-03-02 15:56:42 +03:00

Author

Owner

@jorgemorgado commented on GitHub (Dec 26, 2019):

Thanks for the quick reply. You should find the report's link on your email:
https://docs.google.com/document/d/1etO4NYnSJe...

@jorgemorgado commented on GitHub (Dec 26, 2019): Thanks for the quick reply. You should find the report's link on your email: https://docs.google.com/document/d/1etO4NYnSJe...