Context Navigation

passwd.ihtml

Last change on this file was 185, checked in by scdev, 18 years ago
Q - added oTxt() around all printed PHP_SELFs to avoid XSS attack. See: http://blog.phpdoc.info/archives/13-XSS-Woes.html
File size: 1.3 KB

Line
1	<?php include 'form_error_header.ihtml'; ?>
2
3	<form method="post" action="<?php echo oTxt($_SERVER['PHP_SELF']); ?>">
4	<?php printHiddenSession() ?>
5	<input type="hidden" name="op" value="update_password">
6	<table border="0" cellspacing="0" cellpadding="4">
7	<tr>
8	<td class="formlabel" align="right" valign="top"<?php $fv->err('oldpassword', ' style="color:#f33;"') ?>><?php echo _("Old password"); ?></td>
9	<td valign="top"><input type="password" class="forminputtext" size="25" name="oldpassword" /></td>
10	</tr>
11	<tr>
12	<td class="formlabel" align="right" valign="top"<?php $fv->err('newpassword', ' style="color:#f33;"') ?>><?php echo _("New password"); ?></td>
13	<td valign="top"><input type="password" class="forminputtext" size="25" name="newpassword" /></td>
14	</tr>
15	<tr>
16	<td class="formlabel" align="right" valign="top"<?php $fv->err('newpassword2', ' style="color:#f33;"') ?>><?php echo _("New password again"); ?></td>
17	<td valign="top"><input type="password" class="forminputtext" size="25" name="newpassword2" /></td>
18	</tr>
19	<tr>
20	<td class="formlabel" align="right" valign="top"> </td>
21	<td valign="top"><br /><input type="submit" class="formsubmitbutton" value="<?php echo _("Change password"); ?>" /></td>
22	</tr>
23	</table>
24	</form>

Note: See TracBrowser for help on using the repository browser.