Open mambax7 opened 2 years ago
When investigating need to check ./modules/profile/lostpass.php too since it uses the exact same code.
I am suspicious, as the above code contains a bug (in $areyou generation) that was fixed over a year ago that could affect cache behavior.
Will investigate further.
See here: https://xoops.org/modules/newbb/viewtopic.php?post_id=366276
lostpass.php Has some errors when the user is on Gmail Gmail on Chrome will use cache.google.com, If user clicks mail url【xoops_url/lostpass.php?email=xxx@xxx.com&code=xxxxx】 It will go to: google_url/url?q=xoops_url/lostpass.php?email%3Dxxx@xxx.com%26code%3Dxxxxx&source=gmail&ust=xxxxxxxx&usg=xxxxxxx"
cache.google.com will cache the URL and it will send【lostpass1.tpl】again.
Fix: