If you found a problematic security vulnerability, please refrain from reporting an issue at github but send this vulnerability to us directly. Please include the following details:
-
The name and version of the problematic software component, and if possible
- the location of the issue and
- the potential impact
-
A detailed description to reproduce the vulnerability and
-
Your name, (handle or alias) to be included in the disclosure and hall of fame.
You can send this information to the privacyIDEA core development team by sending an email to
or, if you want to stay anonymous/pseudonymous, you can upload your information to
https://lancelot.netknights.it/owncloud/s/a6sVvOT0Fb3utd9
Thanks a lot for your support and your discretion.