Skip to content

Fix vulnerability #98

Description

@drinkingChai

Remove keys from req.body PUT /api/users so that users can't set themselves as admins:

  • isAdmin
  • isDisabled
  • passwordChange

Metadata

Metadata

Assignees

Labels

Projects

No projects

Relationships

None yet

Development

No branches or pull requests

Issue actions