Ticket #7594: 7594.patch
File 7594.patch, 682 bytes (added by , 7 years ago) |
---|
-
src/bp-settings/bp-settings-actions.php
135 135 136 136 if ( !empty( $_POST['pass1'] ) && !empty( $_POST['pass2'] ) ) { 137 137 138 if ( ( $_POST['pass1'] == $_POST['pass2'] ) && !strpos( " " . $_POST['pass1'], "\\" ) ) {138 if ( ( $_POST['pass1'] == $_POST['pass2'] ) && !strpos( " " . wp_unslash( $_POST['pass1'] ), "\\" ) ) { 139 139 140 140 // Password change attempt is successful. 141 141 if ( ( ! empty( $_POST['pwd'] ) && $_POST['pwd'] != $_POST['pass1'] ) || is_super_admin() ) {