The DHIS2 security team participates in responsible disclosure and welcomes collaboration with the wider community on security issues.

To report a security issue, please email [email protected] with a description of the issue, the steps you took to create the issue, affected versions, and, if known, mitigations for the issue.

Please read our Vulnerability Management and Disclosure Policy before submitting a security issue, as some classes of vulnerabilities are explicitly out of scope.

Learn more about DHIS2 security features at dhis2.org/security.

Learn more about DHIS2 security policies and practices at dhis2.org/trust.

Contact: [email protected]
Preferred-Languages: en
Policy: https://dhis2.org/trust/vulnerability-policy