Currently the recent versions (a year old at max) of the current major release are supported to get security fixes. For older versions we urge you to update to the most recent version of OpenSlides.
Please let us know about the vulnerability by an email to security@openslides.com. Do not create public issues for such problems. We will get in touch with you after reporting the issue.