Revision 1868
Added by Dietmar almost 12 years ago
| save_confirm.php | ||
|---|---|---|
| 26 | 26 |
require_once(dirname(__FILE__).'/AccountSignup.php'); |
| 27 | 27 |
AccountSignup::deleteOutdatedConfirmations(); |
| 28 | 28 |
|
| 29 |
$sPassword = mysql_escape_string($wb->StripCodeFromText($wb->get_post('new_password_1')));
|
|
| 30 |
$sLoginName = mysql_escape_string($wb->StripCodeFromText($wb->get_post('new_loginname')));
|
|
| 31 |
$sConfirmationId = mysql_escape_string($wb->StripCodeFromText($wb->get_post('confirm_code')));
|
|
| 29 |
$sPassword = $database->escapeString($wb->StripCodeFromText($wb->get_post('new_password_1')));
|
|
| 30 |
$sLoginName = $database->escapeString($wb->StripCodeFromText($wb->get_post('new_loginname')));
|
|
| 31 |
$sConfirmationId = $database->escapeString($wb->StripCodeFromText($wb->get_post('confirm_code')));
|
|
| 32 | 32 |
|
| 33 | 33 |
$bSendRegistrationMailtoUser = false; |
| 34 | 34 |
$bSendRegistrationMailtoAdmin = false; |
Also available in: Unified diff
! change mysql_esc_string to WbDatabase::getInstance()->escapeStrinng()