diff options
| author | mistic100 <mistic@piwigo.org> | 2013-12-18 19:59:30 +0000 |
|---|---|---|
| committer | mistic100 <mistic@piwigo.org> | 2013-12-18 19:59:30 +0000 |
| commit | 6e91ec554c4db7087b5ed91d6a44a8bbe336411b (patch) | |
| tree | cf363ad1451a8d502332e63d81dd35f1ea4ef988 /include | |
| parent | 81e0958bad218c8888338cf81c6fd9a0bc52066b (diff) | |
feature 1668: escape login and password in registration email
git-svn-id: http://piwigo.org/svn/trunk@26028 68402e56-0260-453c-a942-63ccdbb3a9ee
Diffstat (limited to 'include')
| -rw-r--r-- | include/functions_user.inc.php | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/include/functions_user.inc.php b/include/functions_user.inc.php index 0500f772f..945a5eaa4 100644 --- a/include/functions_user.inc.php +++ b/include/functions_user.inc.php @@ -252,12 +252,12 @@ SELECT id include_once(PHPWG_ROOT_PATH.'include/functions_mail.inc.php'); $keyargs_content = array( - get_l10n_args('Hello %s,', $login), + get_l10n_args('Hello %s,', stripslashes($login)), get_l10n_args('Thank you for registering at %s!', $conf['gallery_title']), get_l10n_args('', ''), get_l10n_args('Here are your connection settings', ''), - get_l10n_args('Username: %s', $login), - get_l10n_args('Password: %s', $password), + get_l10n_args('Username: %s', stripslashes($login)), + get_l10n_args('Password: %s', stripslashes($password)), get_l10n_args('Email: %s', $mail_address), get_l10n_args('', ''), get_l10n_args('If you think you\'ve received this email in error, please contact us at %s', get_webmaster_mail_address()), |