From 352002e744df8b4f933b5a88b8117f2c16dbb4c4 Mon Sep 17 00:00:00 2001 From: root Date: Sun, 31 Aug 2008 22:29:02 +0000 Subject: [PATCH] Improved register_globals --- includes/account.php | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/includes/account.php b/includes/account.php index 85e7575..9e025fb 100644 --- a/includes/account.php +++ b/includes/account.php @@ -1161,9 +1161,9 @@ if($oldid == 14 && $process != "") { - $_SESSION['_config']['user']['oldpass'] = trim(mysql_real_escape_string(stripslashes($oldpassword))); - $_SESSION['_config']['user']['pword1'] = trim(mysql_real_escape_string(stripslashes($pword1))); - $_SESSION['_config']['user']['pword2'] = trim(mysql_real_escape_string(stripslashes($pword2))); + $_SESSION['_config']['user']['oldpass'] = trim(mysql_real_escape_string(stripslashes($_REQUEST['oldpassword']))); + $_SESSION['_config']['user']['pword1'] = trim(mysql_real_escape_string(stripslashes($_REQUEST['pword1']))); + $_SESSION['_config']['user']['pword2'] = trim(mysql_real_escape_string(stripslashes($_REQUEST['pword2']))); $id = 14; showheader(_("My CAcert.org Account!"));