Esko Logo Back to Esko Support
Choose your language for a machine translation:


Summary

showuserdetails.jsp call doesn't apply any visibility restrictions.

Symptoms

  • Any authorized user can type in the direct user info URL along with the user ID and get his info.
  • After tampering the user ID parameter we can view any user sensitive information.

More Information

For installation instructions and to download the hotfix, go to https://mysoftware.esko.com/Hotfixes/Details/201707035/16.1.1.




Article information
Applies to

WebCenter 16.1.1

Created

 

Last revised

 

AuthorIL
Case Number

WCR-28555

Contents

What is a Hotfix?

A Hotfix is a software package that you can install on an existing installation of our software. Each hotfix contains fixes for one or more known issues in our released software.

Because there is always a small chance for a hotfix to cause new issues, you should only install Recommended Hotfixes, unless otherwise instructed by your Esko Software Support team.


Copyright© 2015-2019 Esko. All trademarks or registered trademarks are property of their respective owners.