Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[SECURITY] Prevent information disclosure of records
With a crafted url for the confirmation action, it was possible to reveal form data of already persisted emails. This behavior is mitigated with a check, whether the email was already persisted or not. If it is already persisted, the request ist forwarded to the main form.
- Loading branch information