Changeset 30418
- Timestamp:
- 11/20/2014 12:22:03 PM (10 years ago)
- Location:
- branches/4.0
- Files:
-
- 2 edited
Legend:
- Unmodified
- Added
- Removed
-
branches/4.0
-
branches/4.0/src/wp-login.php
r29644 r30418 572 572 list( $rp_login, $rp_key ) = explode( ':', wp_unslash( $_COOKIE[ $rp_cookie ] ), 2 ); 573 573 $user = check_password_reset_key( $rp_key, $rp_login ); 574 if ( isset( $_POST['pass1'] ) && ! hash_equals( $rp_key, $_POST['rp_key'] ) ) { 575 $user = false; 576 } 574 577 } else { 575 578 $user = false; … … 641 644 do_action( 'resetpass_form', $user ); 642 645 ?> 646 <input type="hidden" name="rp_key" value="<?php echo esc_attr( $rp_key ); ?>" /> 643 647 <p class="submit"><input type="submit" name="wp-submit" id="wp-submit" class="button button-primary button-large" value="<?php esc_attr_e('Reset Password'); ?>" /></p> 644 648 </form>
Note: See TracChangeset
for help on using the changeset viewer.