diff options
| author | Paul S. Owen <psotfx@users.sourceforge.net> | 2001-10-06 00:51:53 +0000 |
|---|---|---|
| committer | Paul S. Owen <psotfx@users.sourceforge.net> | 2001-10-06 00:51:53 +0000 |
| commit | 0f2e3657e928d24275550b6dee8f6d1eaf3b0415 (patch) | |
| tree | 95c169ac221e293994c1287b7f67b3b8a2a20284 /phpBB | |
| parent | 598aab51a8e201d890a1374d4d27f6710aa94f54 (diff) | |
| download | forums-0f2e3657e928d24275550b6dee8f6d1eaf3b0415.tar forums-0f2e3657e928d24275550b6dee8f6d1eaf3b0415.tar.gz forums-0f2e3657e928d24275550b6dee8f6d1eaf3b0415.tar.bz2 forums-0f2e3657e928d24275550b6dee8f6d1eaf3b0415.tar.xz forums-0f2e3657e928d24275550b6dee8f6d1eaf3b0415.zip | |
Potential security hole fixed, thanks Ashe for pointing it out
git-svn-id: file:///svn/phpbb/trunk@1132 89ea8834-ac86-4346-8a33-228a782c2dd0
Diffstat (limited to 'phpBB')
| -rw-r--r-- | phpBB/profile.php | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/phpBB/profile.php b/phpBB/profile.php index a1bded75dd..6fce93e298 100644 --- a/phpBB/profile.php +++ b/phpBB/profile.php @@ -474,6 +474,7 @@ if( isset($HTTP_GET_VARS['mode']) || isset($HTTP_POST_VARS['mode']) ) } } + $passwd_sql = ""; if( !empty($password) && !empty($password_confirm) ) { // Awww, the user wants to change their password, isn't that cute.. @@ -510,6 +511,7 @@ if( isset($HTTP_GET_VARS['mode']) || isset($HTTP_POST_VARS['mode']) ) } } + $username_sql = ""; if($board_config['allow_namechange'] || $mode == "register") { if($username != $userdata['username'] || $mode == "register") |