Uploaded image for project: 'XWiki Platform'
  1. XWiki Platform
  2. XWIKI-6671

Translated document gets the PR rights of the original document

    XMLWordPrintable

Details

    • Unknown
    • N/A
    • N/A

    Description

      PR rigths of a translated document are checks against the author of the original document.
      This could be easily exploited to execute code with PR rights, event in a monolingual wiki, using the language= query string.

      Attachments

        Issue Links

          relates to

          Task - A task that needs to be done. XWIKI-7879 Refactor to confine delegation of programming rights.

          • Critical - Crashes, loss of data, severe memory leak.
          • In Progress

          Activity

            People

              tmortagne Thomas Mortagne
              softec Denis Gervalle
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: