New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CWE-613: Insufficient Session Expiration 已经被删除的用户仍然可以继续在网站内操作。 #311

Open

lujiefsi opened this issue Nov 27, 2022 · 0 comments

lujiefsi commented Nov 27, 2022

描述 bug

在用户管理界面删除已经登录的用户 user1
user1仍然可以添加书籍等其他操作。
应该提示该用户不存在。

你使用哪个版本出现该问题？

demo版本

如何再现

确定性复现，参考 https://1drv.ms/v/s!AksJ421iyCG-mSNFvsw-AC6Sllxj?e=qRVBzb

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment