LimeSurvey: master aa287360

Author Committer Branch Timestamp Parent
DenisChenu GitHub master 2021-01-15 12:57:49 master 7ae3274e
Affected Issues  16910: Any plugin public function can be done without any control on rights
Changeset

Fixed issue #16910: Any plugin public function can be done without any control on rights (#1706)

Dev: allowedPublicMethods to null by default, used only for compatible plugin
Dev: add Permission checker on getPluginSettings and saveSettings

mod - application/controllers/admin/PluginHelper.php Diff File
mod - application/core/plugins/AuditLog/AuditLog.php Diff File
mod - application/core/plugins/AuthLDAP/AuthLDAP.php Diff File
mod - application/core/plugins/Authdb/Authdb.php Diff File
mod - application/core/plugins/Authwebserver/Authwebserver.php Diff File
mod - application/core/plugins/ComfortUpdateChecker/ComfortUpdateChecker.php Diff File
mod - application/core/plugins/ExportR/ExportR.php Diff File
mod - application/core/plugins/ExportSTATAxml/ExportSTATAxml.php Diff File
mod - application/core/plugins/PasswordRequirement/PasswordRequirement.php Diff File
mod - application/core/plugins/UpdateCheck/UpdateCheck.php Diff File
mod - application/core/plugins/customToken/customToken.php Diff File
mod - application/core/plugins/expressionFixedDbVar/expressionFixedDbVar.php Diff File
mod - application/core/plugins/expressionQuestionForAll/expressionQuestionForAll.php Diff File
mod - application/core/plugins/expressionQuestionHelp/expressionQuestionHelp.php Diff File
mod - application/core/plugins/mailSenderToFrom/mailSenderToFrom.php Diff File
mod - application/core/plugins/oldUrlCompat/oldUrlCompat.php Diff File
mod - application/core/plugins/statFunctions/statFunctions.php Diff File
mod - application/libraries/PluginManager/PluginBase.php Diff File