[LPS-97627] Access to all portlets - Liferay Issues

XML

Word

Printable

Details

Type: Bug
Status: Closed
Resolution: No Longer Reproducible
Affects Version/s: 6.1.X EE
Fix Version/s: None
Component/s: Accessibility, Application Security, Security Vulnerability
Labels:
None

Description

Regarding to task LPS-8465 the bug is still active in 6.1.2 version. Solutions from the mentioned task do not work.

Guest has access to all installed portlets:

p_p_id=<portle_id>&p_p_lifecycle=0&p_p_state=maximized&p_p_mode=view

e.g.:
example.com/web/guest?p_p_id=15&p_p_lifecycle=0&p_p_state=maximized&p_p_mode=view

Attachments

Activity

People

Assignee:

Brian Lee

Reporter:

Dawid Popiołkiewicz

Participants of an Issue:

Arthur Chen, Brian Lee, Dawid Popiołkiewicz, Tomas Polesovsky (topolik)

Recent user:

Brian Lee

Votes:

0 Vote for this issue

Watchers:

0 Start watching this issue

Dates

Created:

01/Jul/19 12:08 AM

Updated:

05/Jul/19 11:40 AM

Resolved:

03/Jul/19 7:16 AM

Days since last comment:

15 weeks ago

Packages

Version	Package