tyler.durden/pandorafms
1
0
Fork 0
mirror of https://github.com/pandorafms/pandorafms.git synced 2025-07-31 01:35:36 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge branch 'ent-11232-vulnerabilidad-usuario-no-autenticado-puede-resetear-pass-de-otros-usuarios' into 'develop'

Browse Source 
Ent 11232 vulnerabilidad usuario no autenticado puede resetear pass de otros usuarios

See merge request artica/pandorafms!5903
This commit is contained in:
Daniel Rodriguez 2023-05-23 10:49:55 +00:00
commit 589e8d535a
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
pandora_console/index.php
View File

@ -797,6 +797,7 @@ if (isset($config['id_user']) === false) {
$pass2 = get_parameter_post('pass2'); $pass2 = get_parameter_post('pass2');
$id_user = get_parameter_post('id_user'); $id_user = get_parameter_post('id_user');
$db_reset_pass_entry = false;
if (empty($reset_hash) === false) { if (empty($reset_hash) === false) {
$hash_data = explode(':::', $reset_hash); $hash_data = explode(':::', $reset_hash);
$id_user = $hash_data[0]; $id_user = $hash_data[0];