Revision 1400
Added by FrankH over 13 years ago
- Security fix in account
- Security fix in admin/media, thanks to hal 9000
| password.php | ||
|---|---|---|
| 26 | 26 |
$new_password = $_POST['new_password']; |
| 27 | 27 |
$new_password2 = $_POST['new_password2']; |
| 28 | 28 |
|
| 29 |
if (!$wb->checkFTAN()) |
|
| 30 |
{
|
|
| 31 |
$wb->print_error($MESSAGE['GENERIC_SECURITY_ACCESS'], WB_URL); |
|
| 32 |
exit(); |
|
| 33 |
} |
|
| 34 |
|
|
| 29 | 35 |
// Create a javascript back link |
| 30 | 36 |
$js_back = "javascript: history.go(-1);"; |
| 31 | 37 |
|
| ... | ... | |
| 58 | 64 |
$wb->print_success($MESSAGE['PREFERENCES']['PASSWORD_CHANGED'], WB_URL.'/account/preferences.php'); |
| 59 | 65 |
} |
| 60 | 66 |
|
| 61 |
|
|
| 62 | 67 |
?> |
Also available in: Unified diff