mbk-lab
/
nextcloud
2
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

fix for bug #1295, don't escape password reset link

This commit is contained in:
Bjoern Schiessle 2012-07-27 15:35:36 +02:00
parent bccd372565
commit 680eed6bac
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
core/lostpassword/index.php
View File

@ -19,7 +19,7 @@ if (isset($_POST['user'])) {
if (!empty($email) and isset($_POST['sectoken']) and isset($_SESSION['sectoken']) and ($_POST['sectoken']==$_SESSION['sectoken']) ) { if (!empty($email) and isset($_POST['sectoken']) and isset($_SESSION['sectoken']) and ($_POST['sectoken']==$_SESSION['sectoken']) ) {
$link = OC_Helper::linkToAbsolute('core/lostpassword', 'resetpassword.php').'?user='.urlencode($_POST['user']).'&token='.$token; $link = OC_Helper::linkToAbsolute('core/lostpassword', 'resetpassword.php').'?user='.urlencode($_POST['user']).'&token='.$token;
$tmpl = new OC_Template('core/lostpassword', 'email'); $tmpl = new OC_Template('core/lostpassword', 'email');
$tmpl->assign('link', $link); $tmpl->assign('link', $link, false);
$msg = $tmpl->fetchPage(); $msg = $tmpl->fetchPage();
$l = OC_L10N::get('core'); $l = OC_L10N::get('core');
$from = 'lostpassword-noreply@' . OCP\Util::getServerHost(); $from = 'lostpassword-noreply@' . OCP\Util::getServerHost();