global $wgOut;
if ('' == $this->mEmail) {
- $this->mainLoginForm( wfMsg( 'noemail', $this->mName ) );
+ $this->mainLoginForm( wfMsg( 'noemail', htmlspecialchars( $this->mName ) ) );
return;
}
#
if ( $this->mRemember ) {
$r = 1;
- $u->setCookiePassword( $this->mPassword );
} else {
$r = 0;
}
$np = User::randomPassword();
$u->setNewpassword( $np );
- setcookie( $wgDBname.'Password', '', time() - 3600, $wgCookiePath, $wgCookieDomain );
+ setcookie( "{$wgDBname}Token", '', time() - 3600, $wgCookiePath, $wgCookieDomain );
$u->saveSettings();
$ip = $wgIP;
$m = wfMsg( 'passwordremindertext', $ip, $u->getName(), $np );
$error = userMailer( $u->getEmail(), $wgPasswordSender, wfMsg( 'passwordremindertitle' ), $m );
-
- return $error;
+
+ return htmlspecialchars( $error );
}
$mmp = wfMsg( 'mailmypassword' );
$endText = wfMsg( 'loginend' );
- if ( $endText = '<loginend>' ) {
+ if ( $endText == '<loginend>' ) {
$endText = '';
}