Security Policy

[jackfromeast]

Hi, pgadmin4 maintainers!

I believe that we have found a potential security issue in the lastest version of pgadmin4 that could lead to account takeover. Could you please set up a security policy for this repository to support our responsible vulnerability reporting?

I also opened a pull request for setting up the security policy: #8544

Reference: https://docs.github.com/en/code-security/getting-started/adding-a-security-policy-to-your-repository

Thank you!

[adityatoshniwal]

Hi, You can send it to ***@***.*** as mentioned here https://github.com/pgadmin-org/pgadmin4?tab=readme-ov-file#security-issues

…

On Tue, Mar 11, 2025 at 11:58 PM jackfromeast ***@***.***> wrote: Hi, pgadmin4 maintainers! I believe that we have found a potential security issue in the lastest version of pgadmin4 that could lead to account takeover. Could you please set up a security policy for this repository to support our responsible vulnerability reporting? I also opened a pull request for setting up the security policy: #8544 <#8544> Reference: https://docs.github.com/en/code-security/getting-started/adding-a-security-policy-to-your-repository Thank you! — Reply to this email directly, view it on GitHub <#8545>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AHTBJC6OIPKW35CYTOUC6ED2T4TOBAVCNFSM6AAAAABYZUTKRCVHI2DSMVQWIX3LMV43ASLTON2WKOZSHEYTCNJQGAZDMOI> . You are receiving this because you are subscribed to this thread.Message ID: ***@***.***> [image: jackfromeast]*jackfromeast* created an issue (pgadmin-org/pgadmin4#8545) <#8545> Hi, pgadmin4 maintainers! I believe that we have found a potential security issue in the lastest version of pgadmin4 that could lead to account takeover. Could you please set up a security policy for this repository to support our responsible vulnerability reporting? I also opened a pull request for setting up the security policy: #8544 <#8544> Reference: https://docs.github.com/en/code-security/getting-started/adding-a-security-policy-to-your-repository Thank you! — Reply to this email directly, view it on GitHub <#8545>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AHTBJC6OIPKW35CYTOUC6ED2T4TOBAVCNFSM6AAAAABYZUTKRCVHI2DSMVQWIX3LMV43ASLTON2WKOZSHEYTCNJQGAZDMOI> . You are receiving this because you are subscribed to this thread.Message ID: ***@***.***>

-- Thanks, Aditya Toshniwal pgAdmin Hacker | Sr. Staff SDE II | *enterprisedb.com* <https://www.enterprisedb.com/> "Don't Complain about Heat, Plant a TREE"

[akshay-joshi]

@jackfromeast

We have given some review comments on your PR, please fix it.