#59
Verified
Maybe a "security bug"
Reported by BreakingLimits on Ajax Scaffold · 09/11/2006 20:34:42
- Assigned to:
- rrwhite
- Priority:
- Normal
- Status:
- Verified
- Category:
- None
- Version:
- 3.1.9
After you create / edit something all attributes (Username, Password!!) a visible in the “next” url.
Sample:
=>www.ajaxscaffold.com/customer_console/edit/10379?p
Reason: params.merge
PS: Thanks for creating Ajax Scaffold. I love it!!!
Kind regards
Maik Kempe
Attachments
No attachment has been uploaded, yet.
Loading comments...