1
veaglarwen
users logged in as a different user
  • 2005/11/5 5:40

  • veaglarwen

  • Just popping in

  • Posts: 28

  • Since: 2004/12/2


Hi, I'm not sure how to handle this issue I've been seeing recently. One morning several weeks ago I woke up and went to my site (allisonmackonline.com) and noticed I was already logged in...as another member of the site. I cleared my cookies and cache and it reset.

I just got a message from a user saying that they were logged in as me.

What is causing this? Have you guys seen this before? What can I do to prevent this? If any random user can log in as me, the site has a serious security risk that needs to be addressed.

I'm running XOOPS 2.0.13 on a linux machine.

2
jdseymour
Re: users logged in as a different user

Do you have any links that include a PHP session ID?

3
veaglarwen
Re: users logged in as a different user
  • 2005/11/5 5:54

  • veaglarwen

  • Just popping in

  • Posts: 28

  • Since: 2004/12/2


that could have been the case.

thanks for letting me know.

Login

Who's Online

327 user(s) are online (130 user(s) are browsing Support Forums)


Members: 0


Guests: 327


more...

Donat-O-Meter

Stats
Goal: $100.00
Due Date: Nov 30
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $100.00
Make donations with PayPal!

Latest GitHub Commits