id	summary	reporter	owner	description	type	status	priority	component	severity	resolution	keywords	cc	release
5784	Loss of the plugin causes sensitive information disclosure	antti-juhani@kaijanaho.fi	dkgdkg	If the plugin is disabled for whatever reason, any sensitive tickets become visible to everyone who has TICKET_VIEW privileges (which is often everybody).  The security implications of this are chilling, I'd say, especially since the plugin is expressedly intended to hide such tickets and a seemingly innocious action like upgrading the python interpreter might (according to [http://trac.edgewall.org/wiki/TracPlugins]) disable the plugin.	defect	new	normal	SensitiveTicketsPlugin	major		security precaution	antti-juhani@kaijanaho.fi, rjollos, mmitar@gmail.com, lkraav	0.11