Fixed issue: Vulnerability in installer

LimeSurvey · Aug 21, 2014 · 5e6529c · 5e6529c
1 parent ceecfbb
commit 5e6529c
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/application/controllers/InstallerController.php b/application/controllers/InstallerController.php
@@ -631,6 +631,10 @@ private function stepOptionalConfiguration()
                 if ($this->connection->getActive() == true) {
                     $sPasswordHash=hash('sha256', $sDefaultAdminPassword);
                     try {
+
+                        if (User::model()->count()>0){
+                            die();
+                        }
                         // Save user
                         $user=new User;
                         $user->users_name=$sDefaultAdminUserName;