Security contact - Githubissues

Cvolton / GMDprivateServer

Geometry Dash Private Server

GNU General Public License v3.0

389 stars 277 forks source link

Security contact #1077

Open mal-tee opened 7 months ago

mal-tee commented 7 months ago

Hello maintainer(s),

I am a security researcher from the Institute of Application Security at TU Braunschweig, Germany. We discovered a (potential) security vulnerability in your project.

We would like to report this vulnerability to you in a responsible and ethical manner. Therefore, we do not want to disclose any details of the vulnerability publicly until you have had a chance to review and fix it.

Could you please let us know your prefered way of receiving security reports?

You can contact us at ias-disclosure@tu-braunschweig.de or by replying to this issue.

Thank you for your attention and cooperation.

MegaSa1nt commented 7 months ago

Hi! Im one of contributors of this project and i have my own fork with many features, could you check it too, please?

https://github.com/MegaSa1nt/GMDprivateServer/tree/listscopy

mal-tee commented 5 months ago

Dear maintainer(s),

I am getting in touch again to ask you for a security contact. We want to disclose a (potential) security vulnerability in your project responsibly. Feel free to respond with your preferred method of disclosure in this issue or via email: ias-disclosure@tu-braunschweig.de

Please note that we anticipate to release our findings later this year.

Thank You

@MegaSa1nt Seems like your fork is affected as well, do you have a dedicated security contact?

MegaSa1nt commented 5 months ago

@mal-tee , i have Discord: МегаСвятой#9096

Cvolton commented 5 months ago

Hi, apologies for the late response, the normal email address I use for Git unfortunately doesn't currently work as I'm in the middle of a server migration, however I am reachable at cvolton.public@gmail.com, if you wish to report the issue there

masckmaster2007 commented 4 months ago

Dear maintainer(s),

I am getting in touch again to ask you for a security contact. We want to disclose a (potential) security vulnerability in your project responsibly. Feel free to respond with your preferred method of disclosure in this issue or via email: ias-disclosure@tu-braunschweig.de

Please note that we anticipate to release our findings later this year.

Thank You

@MegaSa1nt Seems like your fork is affected as well, do you have a dedicated security contact?

I have sent you an email from dimisaio[@]141412.xyz

I am one of the contributors from MegaSa1nt's fork