chamilo
/
chamilo-lms
mirror of https://github.com/chamilo/chamilo-lms/tree/1.11.x
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

[svn r11158] Added explicit int cast, fixing security bug http://projects.dokeos.com/?do=details&id=1201

Browse Source
skala
Yannick Warnier 19 years ago
parent 734b185fe4
commit 09f1b7fdd6
1 changed files with 2 additions and 1 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 3
      main/auth/lost_password.lib.php

3
main/auth/lost_password.lib.php
Unescape View File

@ -1,5 +1,5 @@
<?php
// $Id: lost_password.lib.php 11113 2007-02-14 17:43:58Z elixir_inter $
// $Id: lost_password.lib.php 11158 2007-02-20 00:58:00Z yannoo $
/*
==============================================================================
Dokeos - elearning and course management software
@ -100,6 +100,7 @@ function reset_password($secret, $id)
{
global $your_password_has_been_reset,$userPasswordCrypted;
$tbl_user = Database::get_main_table(TABLE_MAIN_USER);
$id = (int) $id;
$sql = "SELECT user_id AS uid, lastname AS lastName, firstname AS firstName, username AS loginName, password, email FROM ".$tbl_user." WHERE user_id=$id";
$result = api_sql_query($sql,__FILE__,__LINE__);
if ($result && mysql_num_rows($result))

Write Preview
Loading…
Cancel
Save