diff options
| -rw-r--r-- | inc/auth.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/inc/auth.php b/inc/auth.php index 0f3dc8b46..6107645cd 100644 --- a/inc/auth.php +++ b/inc/auth.php @@ -1007,7 +1007,7 @@ function act_resendpwd() { } // generate auth token - $token = md5(auth_cookiesalt().$user); //secret but user based + $token = md5(uniqid(mt_rand(), true)); // random secret $tfile = $conf['cachedir'].'/'.$token{0}.'/'.$token.'.pwauth'; $url = wl('', array('do'=> 'resendpwd', 'pwauth'=> $token), true, '&'); |