Security advisory: Unauthenticated access to Search AJAX calls

From KnowledgeTree Community

Description

An issue in the authentication mechanism on certain search AJAX calls could lead to unauthorized access to information on document types, fieldsets, and fields. This issue has been isolated to calls made to the following service:

/search2/ajax/metadata.php

Affected Installations

Commercial & Community Edition 3.5.x
Community Edition 3.6

How to resolve this issue

To resolve this issue, please upgrade to KnowledgeTree Community or Commercial Edition version 3.6.1.

Support

Please email any questions regarding this issue to support@knowledgetree.com.

Bookmark this page:

del.icio.us

digg

facebook

stumbleupon

Security advisory: Unauthenticated access to Search AJAX calls

From KnowledgeTree Community

Contents

Description

Affected Installations

How to resolve this issue

Support

Views

Personal tools

Navigation

Search

Toolbox