Only the latest version of eXamc is actively maintained and receives security updates.
If you discover a security vulnerability in eXamc, please do not create a public GitHub issue.
Instead, contact us privately:
Please include:
- description of the vulnerability
- steps to reproduce
- potential impact
- your environment (OS, browser, version)
We will:
- Acknowledge your report within 72 hours
- Investigate the issue
- Provide a fix or advisory
This policy covers:
- Source code
- Authentication & authorization
- Data handling
- File uploads
- Admin interface
- APIs
Thank you for helping keep eXamc secure!