New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Validate access token and ACL permissions on /cms/model/save end point #75

Open

csapinoso opened this issue Aug 30, 2016 · 1 comment

Assignees

Labels

Contributor

csapinoso commented Aug 30, 2016

Currently the /cms/model/save end point does not validate access token and ACL permissions. This is a major vulnerability

csapinoso assigned coolwr, tma-isbx and rwei-isbx

Contributor Author

csapinoso commented Aug 30, 2016 •

edited

@tma-isbx's PR #74 address the access token validation part.

csapinoso added the enhancement label

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment