Details
-
Bug
-
Resolution: Solved By
-
Major
-
None
-
2.4.4
-
security, access rights
-
Low
-
Hard
-
Description
The tag cloud shows the user all available tags.
This includes tags for pages which the user has no view right.
This exposes tags of "confidential pages" to the unregistered guest user.
Attachments
Issue Links
- depends on
-
XWIKI-20002 Tags from non-viewable pages are returned from livetable results
- Closed
- is related to
-
XWIKI-20002 Tags from non-viewable pages are returned from livetable results
- Closed
- relates to
-
XWIKI-9069 Private document name leak in document index
- Closed