- This topic has 4 replies, 2 voices, and was last updated 7 years, 7 months ago by
.
-
Posts
-
I noticed that I am able to update the email address without entering the password on the profile page. If anyone were to gain access, they would be able to update the email (and password) without any verification. This is very bad for security.
Before anything is able to be updated, the password should be required.
I noticed that I am able to update the email address without entering the password on the profile page.
The security assumptions are the same as for the baseline WordPress system… once a user or member is logged in, they have unfettered access to data that is permitted with their user/member level; until they logout, or their login cookie expires. Because the membership profile information shares the same fields as the core WordPress user database; it makes no sense to enhance security for accessing/updating that kind of information.
Usually, such measures are used to counter unauthorized access, via unattended login sessions. This is not a replacement for RACF.
P.S. Unless you explicitly logout of your account, or otherwise delete your browser cookies; the default “lifetime” of the SWPM login cookie is 3 days.
It’s still too easy though. It would be much better to at least ask for a re-verification of the password when clicking the update button. Seems like a minimal security measure to take when looking at the Profile page.
You are asking for something that is beyond the operational scope of the plugin. Because SWPM (but not the premium addons) is Open Source code; you are more than welcome to modify it, to meet your particular needs.
- You must be logged in to reply to this topic.