Security problem in URL

Security problem in URL

Hello Support

logged in as a customer ,if I use the URL   http://opmanagerurl.jay.net/apiclient/ember/index.jsp#/Maps/BusinessView/ Itforsyningen_bv as a customer i can just replace the last URL segment with another view. 

for example i can just write http://opmanagerurl.jay.net/apiclient/ember/index.jsp#/Maps/BusinessView/ customdashboard1 instead and get access to maps over devices not allowed via the  user setup restrictions.


If the customer looks at the dashboard he will get information on 2 custom dashboards , namely customdashboard1 and  customdashboard2 these can be uses in the URL But he does bot have access to these devices 

Dashboard

  • Network Overview
  • Overview
  • Top 10
  • Network Top 10
  • Server Top 10
  • VoIP Overview
  • WAN RTT Overview
  • Virtualization Summary
  • Storage Overview
  • customdashboard1
  • customdashboard2
  • Realtime Traffic



      New to M365 Manager Plus?
      New to M365 Manager Plus?
        New to RecoveryManager Plus?
        New to RecoveryManager Plus?
          New to Exchange Reporter Plus?
          New to Exchange Reporter Plus?
            New to SharePoint Manager Plus?
            New to SharePoint Manager Plus?
              See all integrations
              New to ADManager Plus?
              See all integrations
              New to ADManager Plus?

                New to ADSelfService Plus?

                Start your free trial
                Start your free trial



                          Related Products