The safety of Instant-ERP systems which whole back end is based on Odoo so it is very important to us (And we use Odoo internally), and we consider security problems with the highest priority. We do our best every day to protect our valued customers from known security threats, and we welcome all reports of security vulnerabilities discovered by our customers.
We are commited to handle vulnerability reports with the greatest speed and care, provided that the following rules are respected.
Please share privately the details of your security vulnerability by emailing our Security Team at firstname.lastname@example.org
Make sure to include as much information as possible, including the detailed steps to reproduce the problem, the versions that are affected, the expected results and actual results, and any other information that might help us react faster and more efficiently.
You may send this report from an anonymous email account, although we promise not to disclose your identity if you do not want us to.
We ask you to observe the following rules at all times:
Security vulnerabilities are flaws or weaknesses in a system’s design, implementation, or operation and management that could be exploited to violate the system’s security policy.
Here are some examples of vulnerabilities you should report:
But here are some example of vulnerabilities you should NOT report here, please open regular bug reports instead: