Mirrors/sysPass
2
0
Fork 0
mirror of https://github.com/nuxsmin/sysPass.git synced 2026-03-19 06:46:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

Error on updating LDAP user's password. Salt was not been escaped.

Browse Source
This commit is contained in:
nuxsmin
2015-02-08 21:23:58 +01:00
parent 590455a4fe
commit 4674dd042f
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
inc/users.class.php
View File

@@ -241,9 +241,9 @@ class SP_Users
private static function makeUserPass($userPass)
{
$salt = SP_Crypt::makeHashSalt();
$userPass = DB::escape(sha1($salt . DB::escape($userPass)));
$userPass = sha1($salt . $userPass);
return array('salt' => $salt, 'pass' => $userPass);
return array('salt' => DB::escape($salt), 'pass' => DB::escape($userPass));
}
/**