id	summary	reporter	owner	description	type	status	priority	component	severity	resolution	keywords	cc	release
9931	Ignores Finegrained Permissions	csa@dside.dyndns.org	rjollos	The macro ignores finegrained page permissions specified using authz_policy. I.e. if the macro is enabled, any user may use Include macro at any page he has access to and get all the restricted pages included into the output. This is major security flaw. Fix is attached.\r\n	defect	assigned	highest	IncludeMacro	normal		security finegrained permissions		0.11