BETA · privacy LLMs & voice servers operational · GPU upgrade underway for faster responses · packages may still change Status & Roadmap →
Log in Try free

Security Advisories

Transparent log of reported and verified security issues on zelixai.ai and our infrastructure. Responsible disclosure is welcome — we publish the facts.

Published advisories

Chronological. Click a row for the full timeline, impact and mitigations.

ID
Date
Severity
Title
Reporter
IAIP-2026-001
2026-04-20
Medium CVSS 5.3
Hyperlink injection in public forms
Ather Iqbal (OSCP, OSWE) — Alpha Inferno Pvt Ltd

Responsible disclosure

Found a security issue on zelixai.ai or in our widget? We'd like to hear it. Send an e-mail to security@zelixai.ai with a description, reproduction steps and any PoC. We confirm within one business day and keep you informed through remediation.

In scope: zelixai.ai, widget.zelixai.ai, our public API endpoints and the widget embed. Out of scope: denial-of-service, social engineering, physical attacks, and self-XSS.

We don't currently run a paid bug-bounty programme. Reported issues are publicly credited with the reporter's consent — see the advisories above.

BETA · platform in active development, packages and prices may change View status & roadmap →