[LPS-97627] Access to all portlets - Liferay Issues

XML

Word

Printable

Details

Type: Bug
Status: Closed
Resolution: No Longer Reproducible
Affects Version/s: 6.1.X EE
Fix Version/s: None
Component/s: Accessibility, Application Security, Security Vulnerability
Labels:
None

Description

Regarding to task LPS-8465 the bug is still active in 6.1.2 version. Solutions from the mentioned task do not work.

Guest has access to all installed portlets:

p_p_id=<portle_id>&p_p_lifecycle=0&p_p_state=maximized&p_p_mode=view

e.g.:
example.com/web/guest?p_p_id=15&p_p_lifecycle=0&p_p_state=maximized&p_p_mode=view

Attachments

Activity

People

Assignee:: Brian Lee

Reporter:: Dawid Popiołkiewicz

Participants of an Issue:: Arthur Chen, Brian Lee, Dawid Popiołkiewicz, Tomáš Polešovský

Recent user:: Brian Lee

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 01/Jul/19 12:08 AM

Updated:: 05/Jul/19 11:40 AM

Resolved:: 03/Jul/19 7:16 AM

Days since last comment:: 1 year, 16 weeks, 3 days ago

Packages

Version	Package