Revision 1868
Added by Dietmar over 11 years ago
save_confirm.php | ||
---|---|---|
26 | 26 |
require_once(dirname(__FILE__).'/AccountSignup.php'); |
27 | 27 |
AccountSignup::deleteOutdatedConfirmations(); |
28 | 28 |
|
29 |
$sPassword = mysql_escape_string($wb->StripCodeFromText($wb->get_post('new_password_1')));
|
|
30 |
$sLoginName = mysql_escape_string($wb->StripCodeFromText($wb->get_post('new_loginname')));
|
|
31 |
$sConfirmationId = mysql_escape_string($wb->StripCodeFromText($wb->get_post('confirm_code')));
|
|
29 |
$sPassword = $database->escapeString($wb->StripCodeFromText($wb->get_post('new_password_1')));
|
|
30 |
$sLoginName = $database->escapeString($wb->StripCodeFromText($wb->get_post('new_loginname')));
|
|
31 |
$sConfirmationId = $database->escapeString($wb->StripCodeFromText($wb->get_post('confirm_code')));
|
|
32 | 32 |
|
33 | 33 |
$bSendRegistrationMailtoUser = false; |
34 | 34 |
$bSendRegistrationMailtoAdmin = false; |
Also available in: Unified diff
! change mysql_esc_string to WbDatabase::getInstance()->escapeStrinng()