Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Do not accecpt any del cmd for "password" !IMPORTANT!
Prevent unauthorized deletion of the "password" key by checking for a 'del' command targeting it. Previously, a malicious actor could potentially forge a POST request with the 'del' command for the "password" key, leading to the website becoming unreachable. This commit addresses this security vulnerability by explicitly disallowing the deletion of the "password" key. The added check ensures that any attempt to delete this key results in a 500 Internal Server Error response with the appropriate error message. This change is crucial for maintaining the security and accessibility of the website. It is recommended to apply this fix to prevent unauthorized access to sensitive information.
- Loading branch information