theSpoke rant

GLiNTCH: Lazy code in change my profile page leads to huge bug

Added: 8:58 AM on 3/27/2006

So since emailing 'comment@thespoke.net' does not work even though forgot email says: 'please reply ASAP to inform an administrator. ' obviously it is not the case, so there ya go with a post.

“I have been trying to gain access back my blog for some time like 6 months. Please let me know what went wrong: http://thespoke.net/blogs/glintch/default.aspx “

I FIGURED IT OUT, I had a profile that I changed an email on, now – I had to change it back to another email and hit request password and got my original accounts login info. Phew!

BUG NOTE: - One can change his profile’s email address to another members’ email and therefore lock them out of their account. I’ve accidentally locked my self out of my own blog for 6months now.

All this because there is no validation of duplicate email in the system when member changes his/hers email address. And honestly what kind of a website does not even have a proper feedback form and a easy to find email address to email the admins...

Nikita Polyakov
Microsoft Student Ambassador
MSDN AA Program Administrator
University of South Florida

posted @ Monday, March 27, 2006 6:17 AM

Comments on this entry:

No comments posted yet.

Your comment:

Title:

Name:

Email:

(will not be displayed)

Website:

Comment:

Remember Me?

Enter the code shown above

Live Comment Preview:

November

Sun

Mon

Tue

Wed

Thu

Fri

Sat

My groups:

www.TampaUX.org

www.MISSociety.org

www.FlaDotNet.Net

About

Twitter

NikitaP You're right - send it to me ASAP!!! RT @KodefuGuru: Hmm... I have this cool beta from telerik, but no dvdrom on my pdc laptop... about 1 day ago

NikitaP RT @bingmaps: Get a map 4 ur website :) Lowdown on static, dynamic, AJAX or SL, wizard driven or 1-line REST code here: http://bit.ly/8rPaPa about 1 day ago

NikitaP You should see a 1080p Zune Movie on XBOX360 RT @shanselman: First 1080p HD YouTube Video? (Muppets) via @alanstevens http://bit.ly/8UAJM2 about 1 day ago

NikitaP +1 and @absolutdeno is another +1 RT @John_Papadevfishitter.com/gleonardo">@gleonardo: @devfish One big vote here on @John_Papa coming to Tampa about 1 day ago

NikitaP Yay! RT @pocketnowTweets: The iPAQ is Back! HP unveils the iPAQ Glisten for AT&T! http://is.gd/52Lni about 1 day ago

NikitaP Ditto RT @paulirwin Getting used to the new engadget.com -- they definitely should have used Georgia instead of Times for the post body. :-/ about 1 day ago

NikitaP Did I mention that we're giving away new Windows Phones at our Campon Dec 5th? So RSVP today http://bit.l...jWE #wmdev about 2 days ago

NikitaP BLOGGED: Windows Mobile Train Race 2009 – Seattle to Los Angeles http://bit.ly/4r0E2m about 2 days ago

NikitaP @scottgu How about support for selecting text in a TextBlock like HTML did. Common folks ask this of Flash all the time. Nothing we can't do about 2 days ago

NikitaP This was an awesome trip! Great write up here RT @ByteMaster: BLOGGED: Windows Mobile Train Race http://bit.l...urp #wmdev about 2 days ago

Syndication:

RSS ATOM

Nikita Polyakov

Device Application Developer - Microsoft MVP, speaker, organizer @NikitaP