http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=6653
Bug #: 6653 Summary: [security] Rotating collections pages can be accessed without being logged in Classification: Unclassified Change sponsored?: --- Product: Koha Version: master Platform: All OS/Version: All Status: NEW Severity: critical Priority: P5 Component: Authentication AssignedTo: gmcha...@gmail.com ReportedBy: katrin.fisc...@bsz-bw.de QAContact: koha-bugs@lists.koha-community.org CC: dpav...@rot13.org Following URLs in staff can be accessed withoug being logged in: .../cgi-bin/koha/rotating_collections/editCollections.pl .../cgi-bin/koha/rotating_collections/rotatingCollections.pl .../cgi-bin/koha/rotating_collections/addItems.pl .../cgi-bin/koha/rotating_collections/transferCollection.pl -- Configure bugmail: http://bugs.koha-community.org/bugzilla3/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the QA Contact for the bug. _______________________________________________ Koha-bugs mailing list Koha-bugs@lists.koha-community.org http://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-bugs website : http://www.koha-community.org/ git : http://git.koha-community.org/ bugs : http://bugs.koha-community.org/