affects OMERO versions 5.2.3 and earlier
The cleanse.py script which is used by the "bin/omero admin cleanse" command can lead to data loss.
If the cleanse.py script is run by an operating system user who has permission to delete from the filesystem used for OMERO's binary repository but who is logged into OMERO as a non-administrative user (not a member of the OMERO "system" group) then the cleanse operation will delete other users' images, attachments, and other files that the OMERO user does not have permission to access.
OMERO.server up to and including 5.2.3.
Potential for data loss.
Use the 2016-SV1-cleanse.patch to patch cleanse.py.
All OMERO.servers should be upgraded to at least 5.2.4.
Carnë Draug for notifying the OME team of this security issue.