Uploaded image for project: 'MidPoint'
  1. MidPoint
  2. MID-5291

Unauthorized access to work items

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Critical
    • Resolution: Fixed
    • Affects Version/s: 3.6 (Comenius), 3.7, 3.8, 3.9
    • Fix Version/s: 3.9.1, 3.6.2, 3.7.3, 3.8.1
    • Component/s: None
    • Labels:
      None
    • Subscription:
      Internal

      Description

      It is possible (although not straightforward) for an attacker to gain unauthorized access to work items via GUI.

      Reported by Martin Lizner by the means of FOSSA2 bug bounty program.

        Attachments

          Activity

            People

            Assignee:
            mederly Pavol Mederly
            Reporter:
            mederly Pavol Mederly
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: