Andreas/wekan
1
0
Fork 0
mirror of https://github.com/wekan/wekan.git synced 2026-02-22 07:54:06 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

Fixed CRITICAL SECURITY ISSUE of SMTP password visible to Admin at

Browse source 
Admin Panel by using browser inspect to see behind asterisks.

Thanks to Georg Krause and xet7 !
This commit is contained in:
Lauri Ojansivu 2021-02-25 09:02:23 +02:00
parent 64d4c3f971
commit 71725f1b26
2 changed files with 13 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

2
client/components/settings/settingBody.jade
View file

@ -97,7 +97,7 @@ template(name='email')
li.smtp-form
.title {{_ 'smtp-password'}}
.form-group
input.wekan-form-control#mail-server-password(type="password", placeholder="{{_ 'password'}}" value="{{currentSetting.mailServer.password}}")
input.wekan-form-control#mail-server-password(type="password", placeholder="{{_ 'password'}}" value="")
li.smtp-form
.title {{_ 'smtp-tls'}}
.form-group