public/tt-rss
1
0
Fork 0
mirror of https://git.tt-rss.org/git/tt-rss.git synced 2025-12-24 23:51:28 +00:00
Code Issues Releases Wiki Activity

properly escape login and password in login_sequence() (refs #392)

Browse Source
This commit is contained in:
Andrew Dolgov
2011-11-22 10:43:24 +04:00
parent b9d5537724
commit 92decf4f2d
2 changed files with 5 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
functions.php
View File

@@ -2110,8 +2110,8 @@
# try to authenticate user if called from login form
if ($login_action == "do_login") {
$login = $_POST["login"];
$password = $_POST["password"];
$login = db_escape_string($_POST["login"]);
$password = db_escape_string($_POST["password"]);
$remember_me = $_POST["remember_me"];
if (authenticate_user($link, $login, $password)) {