Vulnerability in EPiServer.Forms
I have a form on my site where user is supposed to be able to change password, email etc. When changing email I use the following code:
EPiServer.Personalization.EPiServerProfile.Current.Email = email;
The email is then changed when I view the user properties from admin mode but the weird thing is that I cannot log in with the new email adress. If I then go to Edit user page, select my user and click save without changing anything, login works as expected. Is this a bug or am I forgetting something?