manage_updatePasswordForm allows DoS against other users
Bug #789858 reported by
Alan Hoey
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Zope PAS |
Fix Released
|
Undecided
|
Tres Seaver |
Bug Description
As an authenticated user, manage_
(Line 483 onwards, ZODBUserManager.py)
I plan to make new releases for the 1.5 and 1.6 branches, as well as the trunk.