HackerOne users: Testing against this community violates our program's Terms of Service and will result in your bounty being denied.
Search
-
Re: Security vulnerability in version 2.0.18.8
-
Re: Security vulnerability in version 2.0.18.8
My point that it was not a solution. I applaud you for trying to help, however, if people believed that would close the vulnerability, they might take it in good faith and not check back. It was actually an answer to a specific unrelated question. All it does it remove urls, except in image tags. It is not a substitute for… -
Re: Security vulnerability in version 2.0.18.8
Sick of people ranting about how I should have reported it to the vendor first when they do not know the situation. I have a message thread with Todd, Lincoln, UnderDog dating back to June 2012 where I report all my findings to them, these vulnerabilities and MORE which I did not release publicly were reported on the 14th… -
Re: Security vulnerability in version 2.0.18.8
I tried accessing the drafts of user and it is not possible. Not using http://www.mysite.com/forum/drafts to access someone else's drafts and not with this either, the link to the draft /forum/discussion/1/0#Form_Comment The link to the drafts of other users does not appear to the admin or other users. The way this works…
4 results