⚲
Project
General
Profile
Sign in
Register
Home
Projects
Help
Search
:
Foreman
All Projects
Overview
Activity
Roadmap
Issues
Wiki
Repository
«
Previous
|
Next
»
Revision 3b0b7cb4
Added by
Marek Hulán
over 10 years
ago
ID
3b0b7cb464655f0e550f65ce80d653c646b87d98
Parent
e2988ac7
Child
e5bae297
fixes
#2863
- restrict APIs to resources that a user is permitted to manage (CVE-2013-4182)
Related issues
Bug #2863
: CVE-2013-4182 - Privileges escalation via API
Changes
View differences
added
modified
copied
renamed
deleted
app
controllers
api
base_controller.rb
(
diff
)
v1
compute_resources_controller.rb
(
diff
)
hosts_controller.rb
(
diff
)
test
fixtures
compute_resources.yml
(
diff
)
hosts.yml
(
diff
)
roles.yml
(
diff
)
user_roles.yml
users.yml
(
diff
)
functional
api
v1
compute_resources_controller_test.rb
(
diff
)
hosts_controller_test.rb
(
diff
)
hosts_controller_test.rb
(
diff
)
locations_controller_test.rb
(
diff
)
organizations_controller_test.rb
(
diff
)
unit
location_test.rb
(
diff
)
organization_test.rb
(
diff
)
Loading...
fixes #2863 - restrict APIs to resources that a user is permitted to manage (CVE-2013-4182)