summaryrefslogtreecommitdiff
path: root/index.php
diff options
context:
space:
mode:
authorthomascube <thomas@roundcube.net>2007-04-11 19:28:55 +0000
committerthomascube <thomas@roundcube.net>2007-04-11 19:28:55 +0000
commitf15c26869cbdc73090955967bd104b5cf5fe119b (patch)
tree254a7f08487def64d824ad76d3ee56fd2a50308a /index.php
parentfd39346d9f9b49790a5100060a2e32a06f4a884b (diff)
Don't allow empty user names but empty passwords
Diffstat (limited to 'index.php')
-rw-r--r--index.php6
1 files changed, 3 insertions, 3 deletions
diff --git a/index.php b/index.php
index f365ef94d..638bc8e94 100644
--- a/index.php
+++ b/index.php
@@ -2,7 +2,7 @@
/*
+-----------------------------------------------------------------------+
| RoundCube Webmail IMAP Client |
- | Version 0.1-20070327 |
+ | Version 0.1-20070411 |
| |
| Copyright (C) 2005-2007, RoundCube Dev. - Switzerland |
| Licensed under the GNU GPL |
@@ -40,7 +40,7 @@
*/
-define('RCMAIL_VERSION', '0.1-20070327');
+define('RCMAIL_VERSION', '0.1-20070411');
// define global vars
$CHARSET = 'UTF-8';
@@ -172,7 +172,7 @@ if ($_action=='login' && $_task=='mail')
{
show_message("cookiesdisabled", 'warning');
}
- else if ($_SESSION['temp'] && isset($_POST['_user']) && isset($_POST['_pass']) &&
+ else if ($_SESSION['temp'] && !empty($_POST['_user']) && isset($_POST['_pass']) &&
rcmail_login(get_input_value('_user', RCUBE_INPUT_POST),
get_input_value('_pass', RCUBE_INPUT_POST, true, 'ISO-8859-1'), $host))
{