Closed codyjames closed 7 months ago
I think this may be due to validation being turned off for this specific action.
It seems like most of your permissions/security checks are happening in beforeValidate. Perhaps that gets skipped if saveElement has the second argument set to false?
Good call, purely an oversight here, where there's no distinction between save events and their action.
Fixed in 1.9.7
@engram-design Thanks for fixing this up so quickly! We really appreciate it!
Describe the bug
We received a bug bounty report today showing us that folks are able to trash other users' comments by simply changing the commentId. Is there anything in place that is preventing this? Looking through the code I'm not immediately seeing anything that would prevent this.
Steps to reproduce
Craft CMS version
3.9.6
Plugin version
1.9.6
Multi-site?
No response
Additional context
No response