From 804656ff9bfee884b93af0a06cb08cdf56c98795 Mon Sep 17 00:00:00 2001 From: skodak Date: Wed, 31 Dec 2008 15:53:31 +0000 Subject: [PATCH] MDL-17203 prevent disclosing of sensitive information --- calendar/export_execute.php | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/calendar/export_execute.php b/calendar/export_execute.php index d5ee4ada63..6634d12a1e 100644 --- a/calendar/export_execute.php +++ b/calendar/export_execute.php @@ -15,12 +15,12 @@ if (empty($CFG->enablecalendarexport)) { //Fetch user information if (!$user = get_complete_user_data('username', $username)) { //No such user - die("No such user '$username'"); + die('Invalid authentication'); } //Check authentication token if ($authtoken != sha1($username . $user->password . $CFG->calendar_exportsalt)) { - die('Invalid authentication token'); + die('Invalid authentication'); } $what = optional_param('preset_what', 'all', PARAM_ALPHA); -- 2.39.5