diff options
| -rw-r--r-- | phpBB/includes/session.php | 2 | ||||
| -rwxr-xr-x | phpBB/ucp.php | 2 |
2 files changed, 2 insertions, 2 deletions
diff --git a/phpBB/includes/session.php b/phpBB/includes/session.php index 275618f7dc..e18c71bcc5 100644 --- a/phpBB/includes/session.php +++ b/phpBB/includes/session.php @@ -590,7 +590,7 @@ class session if (!defined('IN_ERROR_HANDLER') && (!$this->session_id || !$db->sql_query($sql) || !$db->sql_affectedrows())) { // Limit new sessions in 1 minute period (if required) - if ((!isset($this->data['session_time']) || !$this->data['session_time']) && $config['active_sessions']) + if (empty($this->data['session_time']) && $config['active_sessions']) { $sql = 'SELECT COUNT(session_id) AS sessions FROM ' . SESSIONS_TABLE . ' diff --git a/phpBB/ucp.php b/phpBB/ucp.php index fcb9c9ec71..0df248dd2d 100755 --- a/phpBB/ucp.php +++ b/phpBB/ucp.php @@ -82,7 +82,7 @@ switch ($mode) break; case 'logout': - if ($user->data['user_id'] != ANONYMOUS && (!empty($_GET['sid']) && ($_GET['sid'] == $user->session_id))) + if ($user->data['user_id'] != ANONYMOUS && isset($_GET['sid']) && !is_array($_GET['sid']) && $_GET['sid'] === $user->session_id) { $user->session_kill(); $user->session_begin(); |