tyler.durden
/
pandorafms
mirror of https://github.com/pandorafms/pandorafms.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge branch 'ent-11232-vulnerabilidad-usuario-no-autenticado-puede-resetear-pass-de-otros-usuarios' into 'develop' 

Ent 11232 vulnerabilidad usuario no autenticado puede resetear pass de otros usuarios

See merge request artica/pandorafms!5903
This commit is contained in:
Daniel Rodriguez 2023-05-23 10:49:55 +00:00
parent dbf7d4dcfe 64f8113506
commit 589e8d535a
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
pandora_console/index.php
View File

@ -797,6 +797,7 @@ if (isset($config['id_user']) === false) {
$pass2 = get_parameter_post('pass2');
$id_user = get_parameter_post('id_user');
$db_reset_pass_entry = false;
if (empty($reset_hash) === false) {
$hash_data = explode(':::', $reset_hash);
$id_user = $hash_data[0];