makary/phpbb
1
0
Fork 0
mirror of https://github.com/phpbb/phpbb.git synced 2025-06-11 13:58:54 +00:00
Code Issues Projects Releases Packages Wiki Activity

[ticket/16210] Ensure terms of use is not skipped by enforcing form token

Browse source 
PHPBB3-16210
This commit is contained in:
Marc Alexander 2019-11-12 21:47:41 +01:00
parent 04204c7ec6
commit dba351702d
No known key found for this signature in database
GPG key ID: 50E0D2423696F995
1 changed files with 6 additions and 8 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

14
phpBB/includes/ucp/ucp_register.php
View file

@ -45,6 +45,11 @@ class ucp_register
$change_lang = $request->variable('change_lang', ''); $change_lang = $request->variable('change_lang', '');
$user_lang = $request->variable('lang', $user->lang_name); $user_lang = $request->variable('lang', $user->lang_name);
if ($agreed && !check_form_key('ucp_register'))
{
$agreed = false;
}
/** /**
* Add UCP register data before they are assigned to the template or submitted * Add UCP register data before they are assigned to the template or submitted
* *
@ -67,14 +72,7 @@ class ucp_register
); );
extract($phpbb_dispatcher->trigger_event('core.ucp_register_requests_after', compact($vars))); extract($phpbb_dispatcher->trigger_event('core.ucp_register_requests_after', compact($vars)));
if ($agreed) add_form_key('ucp_register');
{
add_form_key('ucp_register');
}
else
{
add_form_key('ucp_register_terms');
}
if ($change_lang || $user_lang != $config['default_lang']) if ($change_lang || $user_lang != $config['default_lang'])
{ {