diff options
| author | Dries Buytaert <dries@buytaert.net> | 2009-09-05 05:45:45 +0000 |
|---|---|---|
| committer | Dries Buytaert <dries@buytaert.net> | 2009-09-05 05:45:45 +0000 |
| commit | 3005b0990ed40d8b2b8d963eb26aa0f35c471416 (patch) | |
| tree | 6b5b549c1a7b6fe0202830f2f8805ec71a5a2755 /modules/user/user.module | |
| parent | 01c7f79adcd4e486215ebd9915fc738097ceacf7 (diff) | |
| download | brdo-3005b0990ed40d8b2b8d963eb26aa0f35c471416.tar.gz brdo-3005b0990ed40d8b2b8d963eb26aa0f35c471416.tar.bz2 | |
- Patch ##239676 by v1nce, pwolanin, mfb: fixed SA-CORE-2009-001: missing validation for hook_user().
Diffstat (limited to 'modules/user/user.module')
| -rw-r--r-- | modules/user/user.module | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/modules/user/user.module b/modules/user/user.module index c0cead24a..e2aa808c8 100644 --- a/modules/user/user.module +++ b/modules/user/user.module @@ -1950,6 +1950,7 @@ function user_edit_form(&$form_state, $uid, $edit, $register = FALSE) { '#size' => 48, '#description' => t('Your virtual face or picture. Maximum dimensions are %dimensions pixels and the maximum size is %size kB.', array('%dimensions' => variable_get('user_picture_dimensions', '85x85'), '%size' => variable_get('user_picture_file_size', '30'))) . ' ' . variable_get('user_picture_guidelines', ''), ); + $form['#validate'][] = 'user_profile_form_validate'; $form['#validate'][] = 'user_validate_picture'; } $form['#uid'] = $uid; |