Results 1 to 4 of 4

Thread: BUG - Hidden controls allow to upgrade membership levels ?

  1. October 30th, 2012 #1
    bleem
    bleem is offline
    Thread Starter
    Veteran bleem's Avatar
    Join Date
    Feb 2012
    Posts
    1,571
    Thanks
    103
    Thanked 205 Times in 180 Posts

    BUG - Hidden controls allow to upgrade membership levels ?

    Just tested this theory in cp 3.2beta2 using wp 3.4.2

    I set up a paid membership pack like so:

    test1 test1 Free $50.00 / 90 days October 30, 2012 9:56 am by adl1 Active

    I then went to edit profile page and disabled inline css styles using firefox web developer.

    I then checked the membership pack id in wp back end and then went and added the id of the membership pack to the now un-hidden control field.

    I then updated the profile.

    This is what happened from having no membership pack to having one - all from the front end user profile page and a simple css hack:

    Account Information



    • adl1
    • Member Since: September 12, 2012 6:10 pm
    • Last Login: October 30, 2012 9:38 am


    • Membership Pack: test1
    • Membership Expires: December 29, 2012 9:39 am
    • Renew or Extend Your Membership Pack

    So If I have done this correctly - this serious issue is still with us.

    FYI also

    I have tested this with cp 3.1.9 /3.1.8 and the problem is exactly the same.

    Not exactly heartwarming information to be honest - thankfully I haven't rolled out a live site yet !



    Regards

    Bleem
  2. October 30th, 2012 #2
    levt
    levt is offline
    Veteran levt's Avatar
    Join Date
    Jan 2012
    Location
    Portugal
    Posts
    308
    Thanks
    27
    Thanked 10 Times in 10 Posts
    You must be an AppThemes customer and logged in to view this response. Join today!
  3. October 30th, 2012 #3
    meloniq
    meloniq is offline
    meloniq's Avatar
    Join Date
    May 2011
    Location
    Poland
    Posts
    1,079
    Thanks
    17
    Thanked 178 Times in 159 Posts
    You must be an AppThemes customer and logged in to view this response. Join today!
    Have Clipper website?! --> You need coupons importer!!!
    See available integrations with affiliate networks: Commission Factory, CJ Affiliate, Daisycon, Rakuten LinkShare, ShareASale, Tradedoubler, TradeTracker

    Payment gateways: Bitpay, Dotpay, PayU PL, Przelewy24, Skrill

    me @ AT || meloniq.net
  4. October 31st, 2012 #4
    bleem
    bleem is offline
    Thread Starter
    Veteran bleem's Avatar
    Join Date
    Feb 2012
    Posts
    1,571
    Thanks
    103
    Thanked 205 Times in 180 Posts
    You must be an AppThemes customer and logged in to view this response. Join today!
« Bug with pictures... | Placing an Ad offline yet still shows listed on the site »

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Is this serious? Hidden controls allow to upgrade membership levels
    By avincom in forum Report ClassiPress Bugs
    Replies: 2
    Last Post: June 14th, 2012, 10:58 AM
  2. Club Membership Upgrade - Final Query before Upgrading
    By classifiedsnext in forum ClassiPress General Discussion
    Replies: 2
    Last Post: April 21st, 2011, 02:10 AM