#199 - Usercp changes password to hash of email
Type Defect
Status Fixed
Milestone 2.2
Version 2.1.1
Component Users
Priority High
Severity Normal
Assigned to -
Reported 11 years ago
Updated 8 years ago
Votes 0
Related tickets
Proposed time
Worked time

If a user changes their password, it would change it to the sha1 hash of their email address. In handlers/user.php, on line 108: $password = ", password='".$db->res(sha1($_POST['email']))."'"; Should be $_POST['new_password']

Ticket History

Jack closed as Fixed 11 years and 6 months ago