Harden Security/Profile/Get processor

- Should not allow loading a user other than the current authenticated user - Should not return sensitive fields
modxcms · Jun 8, 2023 · 47d914f · 47d914f
1 parent 39a5672
commit 47d914f
Showing 1 changed file with 2 additions and 5 deletions.
diff --git a/core/src/Revolution/Processors/Security/Profile/Get.php b/core/src/Revolution/Processors/Security/Profile/Get.php
@@ -47,11 +47,7 @@ public function getLanguageTopics()
      */
     public function initialize()
     {
-        $id = $this->getProperty('id');
-        if (empty($id)) {
-            return $this->modx->lexicon('user_err_ns');
-        }
-        $this->user = $this->modx->getObject(modUser::class, $id);
+        $this->user = $this->modx->user;
         if (!$this->user) {
             return $this->modx->lexicon('user_err_not_found');
         }
@@ -78,6 +74,7 @@ public function process()
             $userArray['blockedafter']) : '';
         $userArray['lastlogin'] = !empty($userArray['lastlogin']) ? date('m/d/Y', $userArray['lastlogin']) : '';
 
+        unset($userArray['password'], $userArray['cachepwd'], $userArray['sessionid'], $userArray['salt']);
         return $this->success('', $userArray);
     }