From f452a7f6898a5c29519a6f1557fc8d4aa176954c Mon Sep 17 00:00:00 2001
From: polo <ordipolo@gmx.fr>
Date: Wed, 21 May 2025 17:57:58 +0200
Subject: oh putin

---
 src/controller/password.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'src')

diff --git a/src/controller/password.php b/src/controller/password.php
index 66a617a..074ffb1 100644
--- a/src/controller/password.php
+++ b/src/controller/password.php
@@ -155,7 +155,7 @@ function connect(LoginBuilder $builder, EntityManager $entityManager)
 	else // c'est OK
 	{
 		$login = $_POST['login'];
-		$password = $_POST['password'];
+		$password = htmlspecialchars($_POST['password']);
 		$user = getUser($login, $entityManager);
 
 		// enregistrement et redirection
-- 
cgit v1.2.3