SEO

Hello all,
I just wanted to install vBSEO on another forum and wondered if the URL setting "members/[user_name]/" also used on vbseo.com is really safe as stated in the vbseocp.
So I just tested it and my concerns became true.

On the Online List I searched for a member with some custom character in the username. The first one was O'NEAL pointing to
So I registered a new user with username "oneal" and now when you want to access O'NEAL's profile, you see oneal's profile.

I would not recommend using this feature without User_ID in the URL.

I agree. User_ID should be included in the member profile URLs.

__________________
Joe Ward / Crawlability Inc.
vBSEO 3.2.0 Launched - Maximum Overdrive for Your Web Traffic! Over 100 Instant SEO Optimizations

vBSEO Google Sitemap Generator - Version 2.2 Released Mandatory Upgrade for vBSEO 3.2.0 GOLD

6X Traffic - $1400 in One Day with vBSEO! Imagine What the vBSEO Patent Pending Technology Can Do For You.

I would recommend you to add this information to the vbseocp.php in future releases to avoid customers to use this option

vBSEO is a great product, but this issue is not very positive

Ah, you can delete the oneal profile of course. I won't use it any more, this was just for testing purposes.