Index: trunk/CHANGELOG
===================================================================
--- trunk/CHANGELOG	(revision 849)
+++ trunk/CHANGELOG	(revision 850)
@@ -11,6 +11,8 @@
 ! = Update/Change
 
 ------------------------------------- 2.7.1 -------------------------------------
+29-June-2008 Christian Sommer
+!	applied additional mail check to forgot login form
 28-June-2008 Christian Sommer
 !	class and id attributes in mailto links are no longer ignored by the output filter
 22-Jun-2008 Thomas Hornik
Index: trunk/wb/account/forgot_form.php
===================================================================
--- trunk/wb/account/forgot_form.php	(revision 849)
+++ trunk/wb/account/forgot_form.php	(revision 850)
@@ -32,8 +32,8 @@
 $database = new database();
 
 // Check if the user has already submitted the form, otherwise show it
-if(isset($_POST['email']) AND $_POST['email'] != "") {
-	
+if(isset($_POST['email']) && $_POST['email'] != "" &&
+	eregi("^([0-9a-zA-Z]+[-._+&])*[0-9a-zA-Z]+@([-0-9a-zA-Z]+[.])+[a-zA-Z]{2,6}$", $_POST['email'])) {
 	$email = strip_tags($_POST['email']);
 	
 	// Check if the email exists in the database