Description
This fix addresses two vulnerabilities which allow a guest user to obtain a list of the sites and workflow definition in the portal by manipulating the URL. The user can only view the name of the site and workflow definition. The user cannot make any changes the the site and workflow definition.
Severity
Severity 2
Fixed Version(s)
Publication date: Tue, 29 Jul 2014 20:22:00 +0000