X Xon Well-known member Jan 26, 2017 #1 XenForo_ControllerPublic_Misc::actionUserMessagePreview returns rather than throws $this->getNoPermissionResponseException(); Still stops non-admins accessing it, but with an error 500 rather than a 403
XenForo_ControllerPublic_Misc::actionUserMessagePreview returns rather than throws $this->getNoPermissionResponseException(); Still stops non-admins accessing it, but with an error 500 rather than a 403
Mike XenForo developer Staff member Feb 2, 2017 #2 This is fixed now -- it should just be returning responseNoPermission.
