Active
Project:
QTChat
Version:
6.x-1.x-dev
Component:
Code
Priority:
Critical
Category:
Bug report
Assigned:
Unassigned
Issue tags:
Reporter:
Created:
3 Nov 2011 at 15:20 UTC
Updated:
3 Nov 2011 at 15:20 UTC
I've found two security issues in this module.
http://localhost/drupal6/qtc/ajax/set-online-status?act=4&op=10&id=1
I originally filed this with the security team, but there isn't a stable release of this module. This issue has been cleared to be filed publicly in this queue by them.