1. Home

CIVI-SA-2020-09: Privilege Escalation via ACL Smart Groups

Published
2020-08-19 09:00
Written by
dev-team

In CiviCRM, an Access Control List (ACL) confers limited access to contact records (based on the membership list for a "Group" of contacts). In configurations with "ACL Smart Groups", a flaw allowed limited backend users to re-define their group criteria and gain elevated access. The fix ensures that only trusted users (with permission "edit groups") may re-define the group criteria.

Movement Communications Director

Published
2020-08-13 22:46
Written by
recruiting@wik…

Summary
You are a community-centered leader ready to inspire the people who set knowledge free as a global movement
The Wikimedia Foundation is the non-profit organization that operates Wikipedia—serving nearly half a billion users every month—and its related knowledge projects. We are supported by a community of more than 250,000 global volunteers.

We’d like you to:

Fundraising Operations Associate

Published
2020-08-10 10:18
Written by
recruiting@wik…

Location: Remote

Summary

The Wikimedia Foundation’s Fundraising Operations Associate is part of the fundraising team conducts worldwide campaigns across nearly 40 countries and 20 languages, collecting small donations (averaging about $15) as well as large and small offline donations to support the Wikimedia Foundation’s mission to empower and engage people around the world with free knowledge.

Drupal/CiviCRM developer

Published
2020-08-07 11:57
Written by
yosefromano

Our organization provides and supports a custom D7/CiviCRM platform for Jewish outreach organizations.
We currently manage 150+ sites, all of which are using the same code base.

We are looking to further develop our platform and are looking for a full-stack (more specifically, mid-stack and up) developer to join our team and help with development. This can be an exciting and unique opportunity for someone looking to work on a product rather than manage multiple clients' sites.

Senior Program Officer, Community Resources

Published
2020-07-28 15:04
Written by
recruiting@wik…

SENIOR PROGRAM OFFICER, COMMUNITY RESOURCES

Summary

The Community Resources team distributes funds and other resources via several participatory grantmaking programs, aimed at supporting mission-aligned organizations, groups, and individuals around the world. These programs support a variety of inspiring community-driven experiments, projects and programs, from outreach and events to research and tool-building.

Application Developer

Published
2020-06-23 14:36
Written by
RayWright

This position provides the necessary technical expertise to support the day-to-day administrative tasks of application development provides customers with solutions for key line of business and administrative functions, in addition to the ongoing management, administration and support of existing applications.

CiviCRM Trademarks Revised

Published
2020-06-18 04:27
Written by
josh - member of the CiviCRM community and Core Team member - about the Core Team

In early 2016, the CiviCRM Core Team secured various trademarks and implemented a policy consistent with that of WordPress (at the time, anyway). Over time, discussions around the trademark, most particularly as they related to the use of "civicrm" in domain names, began to surface, resulting in a change to the policy that is in effect as of 18 June 2020.

Subscribe to