diff options
author | Andrew Dolgov <[email protected]> | 2020-09-17 11:49:27 +0300 |
---|---|---|
committer | Andrew Dolgov <[email protected]> | 2020-09-17 11:49:27 +0300 |
commit | 37f41a5246eddc1dda6c2ef8ad0b9acdf90b9edc (patch) | |
tree | 7163babad676924692bb143bf5b6c73cca8acbf7 | |
parent | 5a7e7e136776de145d7d6c78823e3bf7af5fd84c (diff) |
forgotpass: use type strict comparison for reset token
-rwxr-xr-x | classes/handler/public.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/classes/handler/public.php b/classes/handler/public.php index 595473789..a735b1931 100755 --- a/classes/handler/public.php +++ b/classes/handler/public.php @@ -940,7 +940,7 @@ class Handler_Public extends Handler { if ($timestamp && $resetpass_token && $timestamp >= time() - 15*60*60 && - $resetpass_token == $hash) { + $resetpass_token === $hash) { $sth = $this->pdo->prepare("UPDATE ttrss_users SET resetpass_token = NULL WHERE id = ?"); |