Known vulnerabilities: Difference between revisions
From Vintage Story Wiki
No edit summary |
No edit summary |
||
Line 4: | Line 4: | ||
* User email enumeration through the forget password function | * User email enumeration through the forget password function | ||
* Potential Broken Link Hijacking (we don't check if all linked sites redirect to registered sites) | * Potential Broken Link Hijacking (we don't check if all linked sites redirect to registered sites) | ||
* Malicious site linking - | * Malicious site linking - we do not prevent users to link to a malicious site |