CiviCRM Custom Search Permissions Access Bypass Vulnerability

CiviCRM Custom Search Permissions Access Bypass Vulnerability

References:

CIVI-SA-2013-003 - Custom Search Permissions (CiviCRM)
CiviCRM Homepage (CiviCRM)
Security Issue: Any user with 'Access CiviCRM' can view contributions (CiviCRM)

Privacy Statement
Copyright 2010, SecurityFocus