dmeese
commented
11 years ago I think you're on to something here. I'll look into it.
Open mlbriel opened 11 years ago
dmeese
commented
11 years ago I think you're on to something here. I'll look into it.
When a user is destroyed, there is no check for and deletion of previously uploaded content. If this data is indexed by the user ID, a vulnerability could be introduced if the stored content is referenced or the content could orphaned resulting in uncollectible garbage.