[buddypress-trac] [BuddyPress] #2343: SECURITY RISK (internal): Forum posts are "promiscuous" and can be hacked by unauthorized users

buddypress-trac at lists.automattic.com buddypress-trac at lists.automattic.com
Mon Apr 26 22:09:49 UTC 2010


#2343: SECURITY RISK (internal): Forum posts are "promiscuous" and can be hacked
by unauthorized users
----------------------+-----------------------------------------------------
 Reporter:  3sixty    |       Owner:                          
     Type:  defect    |      Status:  new                     
 Priority:  critical  |   Milestone:  1.2.4                   
Component:  Forums    |    Keywords:  has-patch, needs-testing
----------------------+-----------------------------------------------------

Comment(by johnjamesjacoby):

 Hm... This also breaks seeing topics by tag, since there is no forum_id
 listed.

 Back to the drawing board.

-- 
Ticket URL: <http://trac.buddypress.org/ticket/2343#comment:9>
BuddyPress <http://buddypress.org/>
BuddyPress


More information about the buddypress-trac mailing list