(BUG/SECURITY) Private and unlisted submissions are publicly accessible via v3/users/[username]/submissions API
The api/v3/users/[username]/submissions API endpoint returns private and unlisted audition submissions for any user by username.
These are accessible for anyone, without the need to log in or verify access.
Please authenticate to join the conversation.
Upvoters
Status
In Review
Board
π‘
Feature Request
Date
About 1 year ago
Author
Ryan Gartman
Subscribe to post
Get notified by email when there are changes.
Upvoters
Status
In Review
Board
π‘
Feature Request
Date
About 1 year ago
Author
Ryan Gartman
Subscribe to post
Get notified by email when there are changes.