Hello, I've just returned to PA, but immediately I've found 2 issues with these forums and 1 is security-related. If I click the Alerts button at the top right, I see a menu option on the left under Settings named Password. The URL is https://forums.uberent.com/account/security Clicking this immediately redirects to the password reset page and has sent an email to my account. This seems a flaw, as well as offering no option to change my password. I wish to investigate and change my password settings, not try recover it or spam myself with emails. FWIW I've already recently Verified my email address earlier today. The second bug is that while the Alerts button indicates 3 new alerts, it lists none, even under Show All. edit: it still seems inaccurate. edit2: The security URL seems to be spitting back a "HTTP/1.1 303 See Other" bouncing my browser to https://uberent.com/User/RecoverAccountDialog?titleId=4 Cookies are either allowed or allowed-for-session for uberent.com and forums.uberent.com The same bug can be experienced by hovering over my account name while on these forum pages, and clicking the Password option from the drop-down menu that appears. I do not need to navigate to somewhere under https://forums.uberent.com/account/ to experience it.
Do I or you need to PM this to them, or are they alerted to their username being linked, or just regularly checking this forum section for this sort of post?? Any password bugs make many very nervous...
He will see it. I don't think the issue is very serious. I dont understand that the issue is to be honest. I just get to the password reset page when I click that link. No emails.
Were you to follow the link in the email, I would imagine that you can change it. In a way, it's a security measure that makes sure that if you're account were to be logged into by an unauthorized user, unless they also have access to the email associated with the account, i.e. yours, then they couldn't lock you out.
