From 1b5c13bd2e835694423e7e65cd1badda3a276245 Mon Sep 17 00:00:00 2001
From: A. Täffner <darkalex@firesplash.de>
Date: Mon, 11 Apr 2016 08:43:38 -0400
Subject: [PATCH] security enhancement

---
 interface/web/mailuser/mail_user_password_edit.php |    5 +++--
 1 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/interface/web/mailuser/mail_user_password_edit.php b/interface/web/mailuser/mail_user_password_edit.php
index 5bbcedb..07a1925 100644
--- a/interface/web/mailuser/mail_user_password_edit.php
+++ b/interface/web/mailuser/mail_user_password_edit.php
@@ -51,8 +51,9 @@
 class page_action extends tform_actions {
 
 	function onSubmit() {
-
-		$this->id = $_SESSION['s']['user']['mailuser_id'];
+		global $app, $conf;
+		
+		$this->id = $app->functions->intval($_SESSION['s']['user']['mailuser_id']);
 
 		parent::onSubmit();
 

--
Gitblit v1.9.1