[ https://issues.apache.org/jira/browse/OFBIZ-12857?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17768244#comment-17768244 ]
ASF subversion and git services commented on OFBIZ-12857: --------------------------------------------------------- Commit fe2de1721dea7bbab973ab7f66d4241572fda6be in ofbiz-plugins's branch refs/heads/release22.01 from Jacques Le Roux [ https://gitbox.apache.org/repos/asf?p=ofbiz-plugins.git;h=fe2de1721 ] Fixed: Execution of queries without authentication (OFBIZ-12857) My brain told me that I could have made an error in previous commit. I just checked, it was right. This fixes previous commit where I misused userIsUnauthorized. Conflicts handled by hand > Execution of queries without authentication > ------------------------------------------- > > Key: OFBIZ-12857 > URL: https://issues.apache.org/jira/browse/OFBIZ-12857 > Project: OFBiz > Issue Type: Sub-task > Components: solr > Affects Versions: 22.01.01, 18.12.09 > Reporter: Jacques Le Roux > Assignee: Jacques Le Roux > Priority: Major > Fix For: 22.01.01, 18.12.09 > > > A security reporter who does not want to be named reported it to us. > The problem lies with the Solr Plugin for OFBiz. It allows the execution of > queries without authentication. -- This message was sent by Atlassian Jira (v8.20.10#820010)