Openbravo Issue Tracking System - Openbravo ERP |
| View Issue Details |
|
| ID | Project | Category | View Status | Date Submitted | Last Update |
| 0000695 | Openbravo ERP | 00. Application dictionary | public | 2006-10-05 17:21 | 2008-06-12 09:43 |
|
| Reporter | user71 | |
| Assigned To | user71 | |
| Priority | normal | Severity | minor | Reproducibility | always |
| Status | closed | Resolution | fixed | |
| Platform | | OS | 5 | OS Version | |
| Product Version | | |
| Target Version | | Fixed in Version | | |
| Merge Request Status | |
| Review Assigned To | |
| OBNetwork customer | |
| Web browser | |
| Modules | Core |
| Support ticket | |
| Regression level | |
| Regression date | |
| Regression introduced in release | |
| Regression introduced by commit | |
| Triggers an Emergency Pack | No |
|
| Summary | 0000695: Security bug with javascript code in login window |
| Description | In the login window, if fails the javascript code for dropdown lists, a people can enter in the application with no granted permisions. The servlet must check that the user has permision to the role, organization, client... that has selected.
Implement in HttpSecureServlet the security checks for each window. |
| Steps To Reproduce | |
| Proposed Solution | |
| Additional Information | |
| Tags | No tags attached. |
| Relationships | |
| Attached Files | |
|
| Issue History |
| Date Modified | Username | Field | Change |