Home Explore Help
Sign In
yosoyhendrix
/
OGP-Website
mirror of https://github.com/OpenGamePanel/OGP-Website
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

Fixes Reported by Project Black (#644)

OwN-3m-All 1 year ago
parent
e01f3593d1
commit
52f865a4fb
2 changed files with 2 additions and 2 deletions
Unified View Show Diff Stats
  1. 1 1
      index.php
  2. 1 1
      ogp_api.php

+ 1 - 1
index.php
View File 

@@ -253,7 +253,7 @@ function ogpHome()
 
 			$userInfo = $db->getUser($_POST['ulogin']);
 
 			$userInfo = $db->getUser($_POST['ulogin']);
 
 			
 			
 			// If result matched $myusername and $mypassword, table row must be 1 row
 
 			// If result matched $myusername and $mypassword, table row must be 1 row
 
-			if( isset($userInfo['users_passwd']) && md5($_POST['upassword']) == $userInfo['users_passwd'])
 
+			if( isset($userInfo['users_passwd']) && md5($_POST['upassword']) === $userInfo['users_passwd'])
 
 			{
 
 			{
 
 				// Handle recaptcha if enabled
 
 				// Handle recaptcha if enabled
 
 				// But admins don't have to do this :)
 
 				// But admins don't have to do this :)

+ 1 - 1
ogp_api.php
View File 

@@ -228,7 +228,7 @@ function api_token()
 
 		
 		
 		$userInfo = $db->getUser($user);
 
 		$userInfo = $db->getUser($user);
 
 		
 		
-		if(isset($userInfo['users_passwd']) && md5($password) == $userInfo['users_passwd'])
 
+		if(isset($userInfo['users_passwd']) && md5($password) === $userInfo['users_passwd'])
 
 		{
 
 		{
 
 			$token = bin2hex(openssl_random_pseudo_bytes(32));
 
 			$token = bin2hex(openssl_random_pseudo_bytes(32));
 
 			$old_token = $db->currentApiToken($userInfo['user_id']);
 
 			$old_token = $db->currentApiToken($userInfo['user_id']);