Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Where to report a security vulnerability

skoza
Champ in-the-making
Champ in-the-making

‎07-29-2025 08:22 PM

Hi!

I have found a security vulnerability in Alfresco. I want to report it. I found the VDP pdf file (https://security.hyland.com/?itemUid=a26c76c4-6568-4a97-a75b-5cc628e0a407&source=click) and it states that:

"Hyland utilizes HackerOne to as a provider for our Vulnerability Disclosure Program."

Yet I cant find any program belonging to Hyland in HackerOne. There is one named "Alfresco" (https://hackerone.com/alfresco?type=team) but it seems outdated. 
Is the information provided in VDP pdf still relevant? If so, could you provide me a link to your HackerOne program?

Labels:
0 Kudos
2 REPLIES 2

angelborroy
Community Manager Community Manager
Community Manager

‎07-30-2025 07:41 AM

You can summit your vulnerability to HackerOne, it's the official channel. There is no "program" in the directory but you are still able to make it.

Hyland Developer Evangelist
0 Kudos

skoza
Champ in-the-making
Champ in-the-making
In response to angelborroy

‎07-30-2025 11:28 AM

Hi!
Thanks for the quick reply. Unfortunately I have no idea how to submit a report to hackerone without a program. Could you send me a link where I can make a submission?

Thanks a lot!

0 Kudos
Getting started

Explore our Alfresco products with the links below. Use labels to filter content by product module.

Copyright © 2025 Khoros, LLC