-
Type:
Bug
-
Resolution: Duplicate
-
Priority:
Medium
-
None
-
Affects Version/s: 3.13.3
-
Component/s: Navigation - Filters
-
3.13
Some URLs are not protected by authentication which could expose some properties in JIRA that users may not wish to reveal.
Example 1: Searching filters
http://support.atlassian.com/secure/ManageFilters.jspa?filterView=search
Example 2: Viewing properties of filters. I can see custom fields, search terms, etc. if they are used within the filter.
https://support.atlassian.com/secure/IssueNavigator.jspa?mode=hide&requestId=13244
- duplicates
-
JRASERVER-23255 Shared filters are visible to anonymous users when shared with 'Everyone'
- Closed
- is related to
-
-
- Closed
-
