View Issue Details

IDProjectCategoryView StatusLast Update
0003992Composrcorepublic2019-12-08 23:23
ReporterChris GrahamAssigned ToChris Graham 
Severitymajor 
Status resolvedResolutionfixed 
Product Version10.0.28 
Fixed in Version10.0.29 
Summary0003992: Stack traces must omit POSTed password
DescriptionIf a stack trace happens on a join or login screen, it will include the password that was POSTed. This is a bad idea for obvious reasons.
TagsNo tags attached.
Attach Tags
Time estimation (hours)
Sponsorship open

Activities

admin

2019-12-08 23:23

administrator   ~0006214

Fixed in git commit b57272ed0 (https://gitlab.com/composr-foundation/composr/commit/b57272ed0 - link will become active once code pushed to GitLab)

A hotfix (a TAR of files to upload) have been uploaded to this issue. These files are made to the latest intra-version state (i.e. may roll in earlier fixes too if made to the same files) - so only upload files newer than what you have already. Always take backups of files you are replacing or keep a copy of the manual installer for your version, and only apply fixes you need. These hotfixes are not necessarily reliable or well supported. Not sure how to extract TAR files to your Windows computer? Try 7-zip (http://www.7-zip.org/).

hotfix-3992, 2019-12-08 11pm.tar (65,024 bytes)

Issue History

Date Modified Username Field Change