Skip to content

Commit

Permalink
Browse files Browse the repository at this point in the history
security: improper authorization
- huntr
- 2FA bypass in chat functions due to missing middleware
  • Loading branch information
HDVinnie committed Nov 17, 2021
1 parent 33f4901 commit aed196c
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion routes/vue.php
Expand Up @@ -20,7 +20,7 @@
|--------------------------------------------------------------------------
*/

Route::group(['middleware' => ['auth', 'banned']], function () {
Route::group(['middleware' => ['auth', 'twostep', 'banned']], function () {
Route::prefix('chat')->group(function () {
Route::get('/config', [App\Http\Controllers\API\ChatController::class, 'config']);

Expand Down

0 comments on commit aed196c

Please sign in to comment.