Posted by jpmckinney on August 21, 2009 at 6:50pm
Jump to:
| Project: | SMS Framework |
| Version: | 6.x-2.x-dev |
| Component: | Send to Phone |
| Category: | bug report |
| Priority: | normal |
| Assigned: | Unassigned |
| Status: | closed (fixed) |
Issue Summary
sms_sendtophone_page() checks if the user has set a number but does not check if the number has been confirmed. Thus, users effectively have the 'send to any number' permission. This should be fixed. I've prepared a patch. This patch also includes my trivial fixes from #555922: Unreachable code: "You need need to setup your mobile phone to send messages" and #556002: Typo: repetition of "need" in sms_sendtophone_page().
| Attachment | Size |
|---|---|
| sms_sendtophone_page_fixes.patch | 1.38 KB |
Comments
#1
fine
#2
This fix committed.
#3
Automatically closed -- issue fixed for 2 weeks with no activity.