IntenseWebs/WordPress
3
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Don't send out password if account doesn't exist, error out. We should improve error handling in this script.

Browse Source 
git-svn-id: http://svn.automattic.com/wordpress/trunk@645 1a063a9b-81f0-0310-95a4-ce76da25c4cd
This commit is contained in:
saxmatt 2003-12-23 21:19:30 +00:00
parent 546c4bdb41
commit 8f7d04c773
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
wp-login.php
View File

@ -208,6 +208,7 @@ case 'retrievepassword':
$user_email = $user_data->user_email; $user_email = $user_data->user_email;
$user_pass = $user_data->user_pass; $user_pass = $user_data->user_pass;
if (!$user_email) die('Sorry, that user does not seem to exist in our database. Perhaps you have the wrong username?');
$message = "Login: $user_login\r\n"; $message = "Login: $user_login\r\n";
$message .= "Password: $user_pass\r\n"; $message .= "Password: $user_pass\r\n";