diff options
| author | patdenice <patdenice@piwigo.org> | 2013-11-21 22:23:59 +0000 |
|---|---|---|
| committer | patdenice <patdenice@piwigo.org> | 2013-11-21 22:23:59 +0000 |
| commit | e32dbb77befeae58315544a8ecc38e505a42ea68 (patch) | |
| tree | 64962ad069250c32bdc7ad94fccbe17d0039e2f5 /include/functions_user.inc.php | |
| parent | ffa8dc445d965e0a7011fbbfdaf24b72f9baebfa (diff) | |
Small bug on password hash verification with strpos function
git-svn-id: http://piwigo.org/svn/trunk@25633 68402e56-0260-453c-a942-63ccdbb3a9ee
Diffstat (limited to 'include/functions_user.inc.php')
| -rw-r--r-- | include/functions_user.inc.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/include/functions_user.inc.php b/include/functions_user.inc.php index 21844b290..962c42884 100644 --- a/include/functions_user.inc.php +++ b/include/functions_user.inc.php @@ -1148,7 +1148,7 @@ function pwg_password_verify($password, $hash, $user_id=null) global $conf, $pwg_hasher; // If the password has not been hashed with the current algorithm. - if (strpos('$P', $hash) !== 0) + if (strpos($hash, '$P') !== 0) { if (!empty($conf['pass_convert'])) { |