Closed turnermm closed 6 years ago
Removes reversion to logon dialog when calling a page for which the access authorization for @ALL is set to None , enabling attacker with stolen credentials to login.
Removes reversion to logon dialog when calling a page for which the access authorization for @ALL is set to None , enabling attacker with stolen credentials to login.