Add a permission check to core/domain_settings/domain_edit.php.

core/domain_settings/app_config.php

@@ -37,7 +37,6 @@
 		$apps[$x]['permissions'][$y]['name'] = "domain_select";
 		$apps[$x]['permissions'][$y]['groups'][] = "superadmin";
 		$y++;
-
 		$apps[$x]['permissions'][$y]['name'] = "domain_setting_view";
 		$apps[$x]['permissions'][$y]['menu']['uuid'] = "4fa7e90b-6d6c-12d4-712f-62857402b801";
 		$apps[$x]['permissions'][$y]['groups'][] = "superadmin";

core/domain_settings/domain_edit.php

@@ -565,7 +565,9 @@ if (count($_POST) > 0 && strlen($_POST["persistformvar"]) == 0) {
 			}
 
 		//upgrade the domains
-			require_once "core/upgrade/upgrade_domains.php";
+			if (permission_exists('upgrade_apps') || if_group("superadmin")) {
+				require_once "core/upgrade/upgrade_domains.php";
+			}
 
 		//clear the domains session array to update it
 			unset($_SESSION["domains"]);