Bug #68232: Disallow unauthorized module access - TYPO3 Core - TYPO3 Forge

Actions

Copy link

Bug #68232

closed

Disallow unauthorized module access

Added by Helmut Hummel over 9 years ago. Updated about 6 years ago.

Status:

Closed

Priority:

Should have

Assignee:

Benni Mack

Category:

System/Bootstrap/Configuration

Target version:

Start date:

2015-07-16

Due date:

% Done:

100%

Estimated time:

TYPO3 Version:

PHP Version:

Tags:

Complexity:

Is Regression:

Sprint Focus:

Description

Changing the module dispatcher url from mod.php to index.php introduced a potential security leak,
as some modules could be called even with no user authenticated.

Fix and harden the checks in the module dispatcher to avoid that.

Related issues 1 (0 open — 1 closed)

History
Notes
Property changes
Associated revisions

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

TYPO3 Core

Custom queries

Bug #68232

Disallow unauthorized module access

Updated by Gerrit Code Review over 9 years ago

Updated by Helmut Hummel over 9 years ago

Updated by Gerrit Code Review over 9 years ago

Updated by Gerrit Code Review over 9 years ago

Updated by Nicole Cordes over 9 years ago

Updated by Benni Mack about 6 years ago