oqapi/webgui
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Do not allow any backdoors for Visitor to get into his account. Fixes bug #11572.

Browse source
This commit is contained in:
Colin Kuskie 2010-05-17 08:27:01 -07:00
parent d99e4cc415
commit 414e60380f
2 changed files with 2 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

1
lib/WebGUI/Operation/Profile.pm
View file

@ -185,6 +185,7 @@ A reference to the current session.
sub www_editProfile {
my $session = shift;
return $session->privilege->insufficient if $session->user->isVisitor;
my $instance = WebGUI::Content::Account->createInstance($session,"profile");
return $instance->displayContent($instance->callMethod("edit"));
}