MOCpages : Share your LEGO® creations
LEGO models my own creation MOCpages toys shop MOCpages Help Forum
Welcome to the world's greatest LEGO fan community!
Explore cool creations, share your own, and have lots of fun together.  ~  It's all free!
Your comment has been updated.
Conversation »
Security vulnerability
Join to comment
 Group moderator 
Just to make everyone aware. There is a glitch in the coding for the editor that allows non members to access features of some groups. It appears to be limited to changing the name, altering the group rules and making the group public or private.

To the best of my knowledge this "hack" cannot be used to attack members own pages, only groups. It does not permit people to join or ban members or change modererator or admin privileges.

As the moderator of a group that has been vandalised many times I appreciate this is frustrating but mostly harmless.

Seems we have a few jokers who have figured the hack out, I'm hoping they get bored with it and move on.
Permalink
| March 25, 2017, 10:12 am
Quoting andros tempest

Okay, thanks for letting us know. I think one of the group I'm in has actually been the victim of such name changes (It's been fixed now).
http://www.moc-pages.com/group.php/26036
Permalink
| March 25, 2017, 10:14 am
Other topics
« Security vulnerability Updated today
uploader not working Updated today
erading "likes" Updated Wednesday



LEGO models my own creation MOCpages toys shop MOCpages Help Forum


You Your home page | LEGO creations | Favorite builders
Activity Activity | Comments | Creations
Explore Explore | Recent | Groups
MOCpages is an unofficial, fan-created website. LEGO® and the brick configuration are property of The LEGO Group, which does not sponsor, own, or endorse this site.
©2002-2017 Sean Kenney Design Inc | Privacy policy | Terms of use