DjangoBB

Django based forum engine

  • You are not logged in.
  • Root
  • » Bugs
  • » [security] Public user profile contains to mutch informations! [RSS Feed]

#1 Sept. 22, 2012 09:56:08

jedie
From: germany
Registered: 2012-07-12
Posts: 160
Reputation: +  1  -
Profile   Send e-mail  

[security] Public user profile contains to mutch informations!

IMHO it's boring that the public user profile contains to mutch informations! e.g. Anonymous user see the jabber ID.

Quick fix: hide some parts with {% if user.is_authenticated %}…{% endif %}

e.g.: https://github.com/jedie/DjangoBB/commit/fb39590a2546c6b7feb290fb6955386069f1866e (Will create a real pull request next week)




Some of my Projects:
* Migrate phpBB to DjangoBB with django-phpBB3
* DjangoBB github repro and information about my changes
* PyLucid CMS written in Django: http://www.pylucid.org/

Edited jedie (Sept. 22, 2012 09:57:13)

Offline

  • Root
  • » Bugs
  • » [security] Public user profile contains to mutch informations![RSS Feed]

Board footer

Moderator control

Powered by DjangoBB

Lo-Fi Version