Security Risk: Payment details exposed to public

When I click on 'Payments' from the Dashboard as a member (not admin) of the site, I can see the Administration section's Payment Module options!  This is a security risk because our account details in Paypal, 2Checkout (and even CCBill given I bought the mod) are on full display to members!

I have a clean install of 7.0.2 (with CCBill mod), but I'm also noticing this on upgraded 7.0.2 install (without the CCBill mod).

My temporary fix is to not allow that menu option within Dashboard (or Account as I call it) to display for non-member or members.

bump!

This should have been placed in the bugs section. Expect nothing done until BoonEx staff sign on (they are in another part of the world, and it will not be morning for a few more hours).

I don't think it's admin's own payment section, even though it has the word, administration, in it.

It's your own payment admin page. Every member has one. Otherwise, how can they sell stuff?

Well, I have confirmed that it's perfectly normal.

Remember that your members have the right to sell stuff too.