The Orchard Community is pleased to recognize the security researchers who have helped make Orchard CMS safer by finding and reporting security vulnerabilities. Each name listed represents an individual or company who has privately disclosed one or more security vulnerabilities and worked with us to remediate the issue.
To submit any security vulnerability. please send an email to orchard at microsoft.com
June 30 2015 - http://docs.orchardproject.net/Documentation/Patch-20150630
May 19 2015 - http://docs.orchardproject.net/Documentation/Patch-20150519
April 4 2013 - http://docs.orchardproject.net/Documentation/Patch-4-30-2013
December 20 2011 - http://orchard.codeplex.com/discussions/283667