Known vulnerabilities: Difference between revisions

From Vintage Story Wiki
No edit summary
No edit summary
Line 4: Line 4:
* User email enumeration through the forget password function
* User email enumeration through the forget password function
* Potential Broken Link Hijacking (we don't check if all linked sites redirect to registered sites)
* Potential Broken Link Hijacking (we don't check if all linked sites redirect to registered sites)
* Malicious site linking - many areas do not prevent users to link to a malicious site

Revision as of 12:54, 7 June 2021

This is a list of known vulnerabilities across all Vintage Story services:

  • Wiki URL Content Spoofing
  • User email enumeration through the forget password function
  • Potential Broken Link Hijacking (we don't check if all linked sites redirect to registered sites)
  • Malicious site linking - many areas do not prevent users to link to a malicious site
Retrieved from "https://wiki.vintagestory.at/index.php?title=Known_vulnerabilities&oldid=18074"