Historical

Private Comments Visible

We’ve received a few reports from different people that Peoples Privates are visible… After a quick search, I found the problem and it was a rather simple error, based on the code was only checking to see if you were logged in, not at who’s diary you were presently looking.

This is now fixed, and private comments do not show if you’re logged in but looking at someone elses diary.

Apologies for the slip.

I’m also investigating reports of other vulnerabilities in the system relating to be able to add entries and modify other diaries through the login mechanism and a possible page hijack attempt to gain usernames and passwords. I’ll give more details once the extent of the problem is more clear.

Steve

Similar Posts

4 Comments

  1. I just had somethin pointed out to me about ur newest entry.
    It made me laugh an seein as my "friend" aint brave nuff to share it with u then i will :o)

    "We’ve received a few reports from different people that Peoples Privates are visible"

    I know this is a serious entry an I am glad ur sortin it out. But that made me laff LOL.

    Just thought u mite like to see that.
    Wonder if u can spot the lil um laff there LOL

    Buggie

    PS ty again :o) an yes I know that aint wot u meant LOL my mind aint in the gutter unlike my friend (u chicken) LOL

Leave a Reply

Your email address will not be published. Required fields are marked *