Doesn't look secure
-
This doesn’t appear to do any CSRF checks. I’m not sure it even does any permission checks at all.
I can easily see this making it possible for someone malicious to cause all the approved comments on a blog to be erased.
Viewing 1 replies (of 1 total)
Viewing 1 replies (of 1 total)
- The topic ‘Doesn't look secure’ is closed to new replies.