BugTraq
Back to list
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
Liferay users can assign themselves to organizations, leading to possible privilege escalation
May 13 2012 09:55AM
Jelmer Kuperus (jelmer advisories gmail com)
Liferay users can assign themselves to organizations, leading to
possible privilege escalation
Description:
Liferay Portal is an enterprise portal written in Java
Due to insufficient permission checking in the updateOrganizations
method of UserService any user
can assign hem or her self to any or...
[ more ]
Privacy Statement
Copyright 2010, SecurityFocus
possible privilege escalation
Description:
Liferay Portal is an enterprise portal written in Java
Due to insufficient permission checking in the updateOrganizations
method of UserService any user
can assign hem or her self to any or...
[ more ]