Massive security hole

  • Resolved rosbiffer

    (@rosbiffer)


    4 years, 5 months ago

    I enabled “Attach submission as pdf with email” in general settings and am amazed that all of my form submissions are not only being sent as PDFs to me, but also stored in the uploads folder with no protections! So anyone can read every single form submission on my site?

    How is that safe and how do I prevent it? I have turned off the option – can I delete old submissions?

  • The topic ‘Massive security hole’ is closed to new replies.

Tags