Security Advisories
Stay informed about security vulnerabilities and updates for ClientComm products.
At ClientComm, security is our top priority. We follow these core principles to keep your data safe.
End-to-End Encryption
All messages and data are encrypted in transit and at rest.
Regular Security Audits
We conduct regular security audits and penetration testing.
Responsible Disclosure
We promptly disclose and address security vulnerabilities.
Authentication Token Validation Issue
Cross-Site Scripting (XSS) in Message Display
Information Disclosure in API Responses
Insecure Direct Object Reference in File Access
Report a Vulnerability
We take security seriously and appreciate the security community's efforts in helping us maintain a secure platform.
Responsible Disclosure Policy
If you believe you've found a security vulnerability in any ClientComm-owned repository, service, or product, please report it to us through our coordinated disclosure process.
Email your findings to security@clientcomm.ai
Include detailed information about the vulnerability and steps to reproduce it
Allow us reasonable time to address the issue before public disclosure