Bug fix: protect parameters changes in profile.php (checking current user corresponding to profile page)

git-svn-id: https://semanticscuttle.svn.sourceforge.net/svnroot/semanticscuttle/trunk@156 b3834d28-1941-0410-a4f8-b48e95affb8f
This commit is contained in:
mensonge 2008-11-14 11:37:12 +00:00
parent e530ffa24f
commit 67a13f74ce

View file

@ -65,7 +65,7 @@ $tplVars['subtitle'] = $title;
$tplVars['user'] = $user; $tplVars['user'] = $user;
$tplVars['userid'] = $userid; $tplVars['userid'] = $userid;
if (isset($_POST['submitted'])) { if (isset($_POST['submitted']) && $currentUserID == $userid) {
$error = false; $error = false;
$detPass = trim($_POST['pPass']); $detPass = trim($_POST['pPass']);
$detPassConf = trim($_POST['pPassConf']); $detPassConf = trim($_POST['pPassConf']);