You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
NathanGibbs3 opened this issue
Feb 8, 2023
· 2 comments
Assignees
Labels
invalidThis doesn't seem rightLCB-TechDebtIssue exists in Legacy Code Base. We inherited it.ProdObserved in Production Environment.SecurityIssue impacts or is related to App Security.StabilityIssue impacts or is related to App Stability.UIUser Interface Issues.
TMI & TMF exposed to unauthenticated or non-admin users. Thank you @mesteele
Expected Behavior: Less info and NO functionality should be exposed. Current Behavior: A lot of info and functionality is exposed.
The text was updated successfully, but these errors were encountered:
NathanGibbs3
added
invalid
This doesn't seem right
Prod
Observed in Production Environment.
LCB-TechDebt
Issue exists in Legacy Code Base. We inherited it.
Security
Issue impacts or is related to App Security.
UI
User Interface Issues.
Stability
Issue impacts or is related to App Stability.
labels
Feb 8, 2023
Development-Latest: Being logged in using $Use_Auth_System = 1;
If the logged in user credentials are deleted BASE gets an error:
The specified CGI application misbehaved by not returning a complete set of HTTP headers. The headers it did return are "PHP Notice: Unauthorized user access: michael in D:\winids\inetpub\wwwroot\base\includes\base_auth.inc.php on line 563 Attempt Redirect Status: 302 Found X-Powered-By: PHP/7.4.33 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Location: http://winids/base_main.php Content-type: text/html; charset=UTF-8 ".
Not real sure what needs to be done maybe any logged in users should not be able to be deleted until they are logged out?
invalidThis doesn't seem rightLCB-TechDebtIssue exists in Legacy Code Base. We inherited it.ProdObserved in Production Environment.SecurityIssue impacts or is related to App Security.StabilityIssue impacts or is related to App Stability.UIUser Interface Issues.
base_maintenance.php
&includes/base_log_error.inc.php
includes/base_log_error.inc.php
-PrintPageHeader()
Expected Behavior: Less info and NO functionality should be exposed.
Current Behavior: A lot of info and functionality is exposed.
The text was updated successfully, but these errors were encountered: