Uploaded image for project: 'ZABBIX BUGS AND ISSUES'
  1. ZABBIX BUGS AND ISSUES
  2. ZBX-5700

Lack of permission checks in Frontend.

    XMLWordPrintable

Details

    • Incident report
    • Status: Closed
    • Minor
    • Resolution: Fixed
    • 2.0.4, 2.1.0
    • 2.0.4rc1, 2.1.0
    • Frontend (F)
    • None

    Description

      It is possible to open many pages with incorrect ID and see undefined indexes or no data. Instead correct error message must be showen. Code must be similar with:
      $myIds = get_request('myid');
      if (empty($myIds))

      { access_deny(); }

      Affected pages:
      Administration->General->Icon mapping
      Administration->General->Images
      Administration->General->Value mapping
      Administration->General->Regular expressions
      Administration->MediaTypes
      .. and others

      Attachments

        Issue Links

          is duplicated by

          Incident report - Incident report ZBX-4183 Attempt to save an already deleted image succeeds. Should probably fail with an error message.

          • Major - Major loss of function.
          • Closed

          Incident report - Incident report ZBX-4185 Attempt to save an already deleted user group succeeds. Should probably fail with an error message.

          • Major - Major loss of function.
          • Closed

          Incident report - Incident report ZBX-4186 Attempt to save an already deleted media type succeeds. Should probably fail with an error message.

          • Major - Major loss of function.
          • Closed

          Activity

            People

              oleg.egorov Oleg Egorov (Inactive)
              eduards Eduards Samersovs (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: