MrMicky-FR
commented
4 months ago The page loading should definitely be faster, but seems out of scope. Some basic rate limiting should be in place on the webserver (or proxy if any), as it’s some kind of DoS. Also in case it happens the whole ticket can be deleted at once (just need to be closed first)
Issue is that when a user spam click the comment/post button it send comment without getting a limit
video: https://streamable.com/m5r23h
This could be abuse and fill up the database quickly (long message + autoclicker)