From 07320a047a171778c155f1a044fde4d2f8f800bb Mon Sep 17 00:00:00 2001
From: Philipp Dunkel <philipp@cacert.org>
Date: Sat, 26 Dec 2009 18:45:51 +0000
Subject: [PATCH] Prevented Hash-Change during Session

---
 pages/account/40.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pages/account/40.php b/pages/account/40.php
index 0142682..1b76f9c 100644
--- a/pages/account/40.php
+++ b/pages/account/40.php
@@ -15,7 +15,7 @@
     along with this program; if not, write to the Free Software
     Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301  USA
 */
-	$_SESSION['_config']['secrethash'] = md5(date("YmdHis").rand(0, intval(date("u"))));
+if(!array_key_exists('secrethash',$_SESSION['_config'])) $_SESSION['_config']['secrethash'] = md5(date("YmdHis").rand(0, intval(date("u"))));
 ?>
 <H3><?=_("Contact Us")?></H3>