urgent: moderation hack by creating an account with the same email as a mode
It's very to easy to gain moderator access if you know the email of someone who's a moderator. If that moderator is using Google login to moderate, and doesn't have a commento account, the malicious user will be able to create one and become a moderator (moderation is only based on email).
Possible ways to solve this:
- Require all commenter email addresses to be verified
- Allow moderation only from commento accounts
- Only give moderator access to emails only after registering a commento account
I think the first one has the biggest flaw: not everyone has SMTP configured, but they may have google auth configured. The second is slightly inconvinient, but perfectly secure. The third is the best option IMO.