mlug / Ninamori / issues / #136 - Critical security breach in Django Mail Queue — Bitbucket

Issue #136 resolved

Goury Gabriev created an issue 2016-09-14

Stored attachments can be just downloaded from media_url which is critically insecure. Not only this, but attachments with same name can collide with each other.

I should either patch DMQ or integrate another solution for handling email messaging.

Comments (2)

Goury Gabriev reporter
- changed status to open
- 2016-09-14T00:54:17+00:00
Goury Gabriev reporter
- changed status to resolved
Done in https://github.com/dstegelman/django-mail-queue/pull/81

Can use
```
pip inststall git+https://github.com/Goury/django-mail-queue
```
for now
- 2016-09-14T14:50:12+00:00
Log in to comment

Assignee: Goury Gabriev

Type: bug

Priority: blocker

Status: resolved

Version: 0.5

Votes: 0

Watchers: 1

Jira: the preferred issue tracker for Bitbucket. Join the team!