mirror of
https://github.com/Shadowss/TravianZ.git
synced 2026-07-04 20:04:21 +00:00
Fix CVE-2023-36995
This commit is contained in:
@@ -82,6 +82,7 @@ class adm_DB {
|
||||
$bcrypted = false;
|
||||
}
|
||||
|
||||
$username = htmlspecialchars($username);
|
||||
if($pwOk) {
|
||||
// update password to bcrypt, if correct
|
||||
if (!$dbarray['is_bcrypt'] && !$bcrypted) {
|
||||
|
||||
Reference in New Issue
Block a user