• This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn more.

XF 1.4 [Security] Banned members able to change their password?


Well-known member
Today reviewing my user change log I found a record of a banned member that says:

Field Name: Password
Old value: *******
New value: *******

I have tried and being banned you can't change your password.

What could be happening here?



Well-known member
Furthermore, banned members can still log in like any other member, so it wouldn't make sense to deny them the ability to reset their password.