Register today for Oracle CloudWorld. October 17th - 20th, Las Vegas

Register now

Hillel Cooperman, Senior VP of User Experience Design, has a message for you on Oracle CloudWorld

Watch now
URL inserted into browser window allows access to report without security — Cloud Customer Connect
You're almost there! Please answer a few more questions for access to the Applications content. Complete registration
Interested in joining? Complete your registration by providing Areas of Interest here. Register

URL inserted into browser window allows access to report without security

Received Response
11
Views
1
Comments
in Reporting and Analytics for HCM 1 comment

Summary:

Users able to run reports using direct URL access

Content (required):

We have identified an issue where our users can enter a report specific URL into a browser and the report will produce results without security being invoked. These users do not have access to run reports through the application, but inserting a URL in a browser window will allow the results to appear. I did try a couple different browsers. Chrome made me sign into the application but then returned information beyond the users' security profile. MS Edge did not ask me to sign in, it just returned the completed report. I've logged an SR.

Tagged:

Howdy, Stranger!

Log In

To view full details, sign in.

Register

Don't have an account? Click here to get started!