Non-unique users
Bug #747842 reported by
Lars Vierbergen
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
RemoteCP Panel |
Fix Released
|
Critical
|
Lars Vierbergen | ||
RemoteCP Web |
Fix Released
|
Critical
|
Lars Vierbergen |
Bug Description
Suppose a remote database is registered into, let's say, Panel A.
Now, someone also registers it in Panel B, another website.
All users with the same username in Panel B can also access and edit sites designated to users of Panel A.
visibility: | private → public |
tags: | added: security |
Changed in remotecp-website: | |
status: | New → Confirmed |
importance: | Undecided → Critical |
assignee: | nobody → Lars Vierbergen (vierbergenlars) |
milestone: | none → 2.0 |
Changed in remotecp-panel: | |
status: | New → Confirmed |
importance: | Undecided → Critical |
assignee: | nobody → Lars Vierbergen (vierbergenlars) |
milestone: | none → 2.0 |
tags: | added: core php |
visibility: | public → private |
visibility: | private → public |
tags: | added: database |
Changed in remotecp-panel: | |
status: | Confirmed → In Progress |
tags: | added: remote |
Changed in remotecp-panel: | |
status: | In Progress → Fix Committed |
Changed in remotecp-website: | |
status: | Confirmed → In Progress |
Changed in remotecp-website: | |
status: | In Progress → Fix Committed |
tags: | added: v.1 |
Changed in remotecp-panel: | |
status: | Fix Committed → Fix Released |
Changed in remotecp-website: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.