Dev mode exception from CSRF left in URL when enabling MFA

Share
https://invisioncommunity.com/forums/topic/467079-dev-mode-exception-from-csrf-left-in-url-when-enabling-mfa/
Followers

Posted May 5, 20222 yr

To reproduce, enable security questions in the account security menu.

Quote

ErrorException: An 200 response is being sent however the CSRF key is present in the requested URL. CSRF keys should be sent via POST or the request should be redirected to a URL not containing a CSRF key once finished. (256)

The URL is

/settings/account-security/&act=enable&type=questions&_new=1&csrfKey=(omitted)

May 6, 20222 yr

Thank you for bringing this issue to our attention! I can confirm this should be further reviewed and I have logged an internal bug report for our development team to investigate and address as necessary, in a future maintenance release.

https://invisioncommunity.com/forums/topic/467079-dev-mode-exception-from-csrf-left-in-url-when-enabling-mfa/

Followers

Go to topic listing

No registered users viewing this page.

Five Invision Community 5 features your team will love

Five Invision Community 5 features your members will love

Invision Community 4: SEO, prepare for v5 and dormant account notifications

Invision Community 5: Beta testing and latest updates

Dev mode exception from CSRF left in URL when enabling MFA

Featured Replies

Recently Browsing 0

Account

Navigation

Messages

Notifications

Search