We found some low security issues <https://docs.djangoproject.com/en/dev/internals/security/#how-django-discloses-security-issues> with OpenWISP Controller 0.7.x which allow members of organizations to find out UUIDs and other bits of information of other organizations, which in turn may be used to try to obtain more information.
We are preparing a security release to address these issues. WIll keep you updated. Best regards *Federico Capoano* -- You received this message because you are subscribed to the Google Groups "OpenWISP" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web, visit https://groups.google.com/d/msgid/openwisp/CAAGgX6LdY8i508co5gUoa-nV9DOc%2BXcZbQKZScXi6RnBJyruGg%40mail.gmail.com.
