XenForo
Administrative
- Thread starter
- Admin
- #1
When a search has a valid search handler, and
This allows constructing a query which likely side-steps
For example: example search.
This will lack the normal node visibility checks that a post/thread search would have.
The problem is in
Read more
ادامه مطلب...
c.type
or c.content
are used , XenForo does not validate that they are covered by getSearchableContentTypes
.This allows constructing a query which likely side-steps
getTypePermissionConstraints
for those types.For example: example search.
This will lack the normal node visibility checks that a post/thread search would have.
The problem is in
prepareSearchQuery
which handles...Read more
ادامه مطلب...