2009-08-17, 04:55 PM
Hi. I'll post this as a bug because i don't think this is an intended function. If you are an admin and you login regularly and than to the admin panel you will only logout once in the admin panel which if you are not careful allow a person on the same computer to have user cp/ mod cp privileges.
Here's to replicate this bug easily. go to new forum with only the admin user:
on the bottom:
Please welcome our newest member, admin
click on admin
click on Send admin a private message.
login
on: Welcome back, admin. You last visited: Today, 12:38 PM (User CP — Mod CP — Admin CP — Log Out)
Click on admin CP
login again <notes this spot>
click on far right logout.
<now you are logged out of admin>
go back to forums.
You are still logged in as admin. using 1.4.8 and regular file caching settings. if on the other hand you don't log out the admin cp and just the user cp... people can have full access to the admin cp if they know the link.
Here's to replicate this bug easily. go to new forum with only the admin user:
on the bottom:
Please welcome our newest member, admin
click on admin
click on Send admin a private message.
login
on: Welcome back, admin. You last visited: Today, 12:38 PM (User CP — Mod CP — Admin CP — Log Out)
Click on admin CP
login again <notes this spot>
click on far right logout.
<now you are logged out of admin>
go back to forums.
You are still logged in as admin. using 1.4.8 and regular file caching settings. if on the other hand you don't log out the admin cp and just the user cp... people can have full access to the admin cp if they know the link.