c2c-oerpscenario team mailing list archive

Thread
Date

[Bug 854849] Re: no field security with csv export

To: c2c-oerpscenario@xxxxxxxxxxxxxxxxxxx
From: "Olivier Dony \(OpenERP\)" <854849@xxxxxxxxxxxxxxxxxx>
Date: Wed, 21 Sep 2011 12:33:01 -0000
Reply-to: Bug 854849 <854849@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

** Visibility changed to: Public

** This bug is no longer flagged as a security vulnerability

-- 
You received this bug notification because you are a member of C2C
OERPScenario, which is subscribed to OpenERP Project Group.
https://bugs.launchpad.net/bugs/854849

Title:
  no field security with csv export

Status in OpenERP GTK Client:
  Confirmed

Bug description:
  Field security is not managed in csv exporting.

  If a user has not the right to access to a field in an object (for
  example standard price in products), he can export the data with gtk
  client.

  This is a security hole

To manage notifications about this bug go to:
https://bugs.launchpad.net/openobject-client/+bug/854849/+subscriptions