Please report any security issues you find in zanata projects to:
This will be read by the Red Hat security response team, who will handle the resolution of any reported security issues in confidence. In your report, please note how you would like to be credited for discovering the issue and the details of any embargo you would like to impose.
The security advisories page lists all security vulnerabilities fixed in zanata.