diff options
Diffstat (limited to 'modules/pref-prefs.php')
| -rw-r--r-- | modules/pref-prefs.php | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/modules/pref-prefs.php b/modules/pref-prefs.php index 838c722c3..2ab79db01 100644 --- a/modules/pref-prefs.php +++ b/modules/pref-prefs.php @@ -21,9 +21,9 @@ if ($subop == "change-password") { - $old_pw = $_POST["old_password"]; - $new_pw = $_POST["new_password"]; - $con_pw = $_POST["confirm_password"]; + $old_pw = db_escape_string($_POST["old_password"]); + $new_pw = db_escape_string($_POST["new_password"]); + $con_pw = db_escape_string($_POST["confirm_password"]); if ($old_pw == "") { print "ERROR: ".__("Old password cannot be blank."); |