Revision 353
Added by ryan almost 19 years ago
| email.php | ||
|---|---|---|
| 48 | 48 |
$admin->print_error($MESSAGE['USERS']['INVALID_EMAIL']); |
| 49 | 49 |
} |
| 50 | 50 |
|
| 51 |
$email = $wb->add_slashes($email); |
|
| 52 |
|
|
| 51 | 53 |
// Update the database |
| 52 | 54 |
$database = new database(); |
| 53 | 55 |
$query = "UPDATE ".TABLE_PREFIX."users SET email = '$email' WHERE user_id = '".$admin->get_user_id()."'"; |
Also available in: Unified diff
Fixed more security issue's related to ticket #237