Opened 13 years ago
Closed 13 years ago
#503 closed defect (fixed)
Security hole in metada insert
| Reported by: | heikki | Owned by: | heikki |
|---|---|---|---|
| Priority: | blocker | Milestone: | v2.6.4 |
| Component: | General | Version: | v2.6.3 |
| Keywords: | security, metadata insert, priviliges | Cc: |
Description
You can replace any metadata with your own.
To reproduce:
User A in group A, user B in group B. They can be either Editor or Content Reviewer.
User A creates a metadata with UUID X. User B creates, or obtains a metadata with the same UUID X and inserts it, with the option 'Overwrite metadata with same UUID'.
The result is that the metadata created by user A is replaced by the one of user B, irrespective of the privileges.
Note:
See TracTickets
for help on using tickets.
Fixed in 2.6.x and trunk.