Guranteed somebody will paste the verification link and not the token, especially before all the translations are completed. But even then...

author: zotlabs <mike@macgirvin.com> 2018-01-27 15:20:43 -0800
committer: zotlabs <mike@macgirvin.com> 2018-01-27 15:20:43 -0800
commit: 21f464a5577e84b808fd56efdc49117a64c8dc30 (patch)
tree: 9afd911a7bcb3aa161b385120035d77a5a94681e /Zotlabs/Module/Email_validation.php
parent: 69099a2732b749b4e370e16523152068e15cbd6f (diff)
download: volse-hubzilla-21f464a5577e84b808fd56efdc49117a64c8dc30.tar.gz
volse-hubzilla-21f464a5577e84b808fd56efdc49117a64c8dc30.tar.bz2
volse-hubzilla-21f464a5577e84b808fd56efdc49117a64c8dc30.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/Zotlabs/Module/Email_validation.php b/Zotlabs/Module/Email_validation.php
index 4cc016847..162501140 100644
--- a/Zotlabs/Module/Email_validation.php
+++ b/Zotlabs/Module/Email_validation.php
@@ -8,7 +8,7 @@ class Email_validation extends \Zotlabs\Web\Controller {
 	function post() {
 
 		if($_POST['token']) {
-			if(! account_approve(trim($_POST['token']))) {
+			if(! account_approve(trim(basename($_POST['token'])))) {
 				notice('Token verification failed.');
 			}
 		}
author	zotlabs <mike@macgirvin.com>	2018-01-27 15:20:43 -0800
committer	zotlabs <mike@macgirvin.com>	2018-01-27 15:20:43 -0800
commit	21f464a5577e84b808fd56efdc49117a64c8dc30 (patch)
tree	9afd911a7bcb3aa161b385120035d77a5a94681e /Zotlabs/Module/Email_validation.php
parent	69099a2732b749b4e370e16523152068e15cbd6f (diff)
download	volse-hubzilla-21f464a5577e84b808fd56efdc49117a64c8dc30.tar.gz volse-hubzilla-21f464a5577e84b808fd56efdc49117a64c8dc30.tar.bz2 volse-hubzilla-21f464a5577e84b808fd56efdc49117a64c8dc30.zip