digininja
commented
1 year ago And again, thanks.
Closed sl33pingmathrapt0r closed 1 year ago
digininja
commented
1 year ago And again, thanks.
sl33pingmathrapt0r
commented
1 year ago Welcome :)
On Wed, 11 Oct 2023, 16:22 Robin Wood, @.***> wrote:
And again, thanks.
— Reply to this email directly, view it on GitHub https://github.com/digininja/DVWA/pull/586#issuecomment-1757104807, or unsubscribe https://github.com/notifications/unsubscribe-auth/APTS2CYUVZD7VE3UOD4V4ODX6ZJMJANCNFSM6AAAAAA53HYYIE . You are receiving this because you authored the thread.Message ID: @.***>
Added
exit;statement to stop leaking vulnerability to Impossible level.""" There are bugs in the get_user_data.php and change_user_details.php files that makes the High and Impossible levels of Authorization Bypass unintentionally vulnerable, sharing the same leaks as Medium. This is not intended, following the Help message.
Rectified the files by adding
exit;statements where necessary. """