[Koha-bugs] [Bug 3280] opac/opac-sendbasket.pl security leaky
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Thu Jun 28 09:51:21 CEST 2012
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=3280
M. de Rooy <m.de.rooy at rijksmuseum.nl> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |m.de.rooy at rijksmuseum.nl
--- Comment #5 from M. de Rooy <m.de.rooy at rijksmuseum.nl> ---
Kyle,
Your patch now removes the feature of an anonymous user putting books into the
cart and mailing them. Would it not be enough to check if the cart is not empty
instead of forcing login now?
Should we discuss restricting all email functionality in Koha to authenticated
users? Or add yet another pref :-)
--
You are receiving this mail because:
You are the QA Contact for the bug.
You are watching all bug changes.
More information about the Koha-bugs
mailing list