Security Issues

If you have found a security related bug or exploit in Serendipity, please contact the Serendipity Team before releasing information to the public.

The reason for this is that the Serendipity Team treats those issues with care and wants to release a fixed release to which users can upgrade. This helps our users to not get confused on how to solve a bug.

The Team will give proper credits for all issues reported. We usually react within 24 hours after you get in touch with us and will talk to you about further proceedings in depth.

Please either send a general mail to our Mailing Lists and ask for someone of the team to contact you - or the fastest way is to contact our Release Technician Garvin Hicking via E-Mail: serendipity {at} supergarv (dot) de