Partially wrong permission test in viewcat.php

Dolibarr / dolibarr

Dolibarr ERP CRM is a modern software package to manage your company or foundation's activity (contacts, suppliers, invoices, orders, stocks, agenda, accounting, ...). it's an open source Web application (written in PHP) designed for businesses of any sizes, foundations and freelancers.

https://www.dolibarr.org

GNU General Public License v3.0

5.53k stars 2.81k forks source link

Partially wrong permission test in viewcat.php #20240

Open JohnXLivingston opened 2 years ago

JohnXLivingston commented 2 years ago

Hello,

In the following line, restrictedArea is called with the $id parameter: https://github.com/Dolibarr/dolibarr/blob/8c94c2f98cbb881914923b28db57a35cf20926e3/htdocs/categories/viewcat.php#L73

But as you can see here, sometimes we don't get $id but $label instead (for example from the previous/next links)

JohnXLivingston commented 1 year ago

This bug is still relevant.

ksar-ksar commented 1 year ago

Hello,

Is it still the case on V18 ?

JohnXLivingston commented 1 month ago

As far as i know, this bug is still present.