From 5e6529c227af28fddce8855f47dd10f57ca3cd0c Mon Sep 17 00:00:00 2001
From: Carsten Schmitz <carsten.schmitz@limesurvey.org>
Date: Thu, 21 Aug 2014 14:13:43 +0200
Subject: [PATCH] Fixed issue: Vulnerability in installer

---
 application/controllers/InstallerController.php | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/application/controllers/InstallerController.php b/application/controllers/InstallerController.php
index 864180a7f74..378db465465 100644
--- a/application/controllers/InstallerController.php
+++ b/application/controllers/InstallerController.php
@@ -631,6 +631,10 @@ private function stepOptionalConfiguration()
                 if ($this->connection->getActive() == true) {
                     $sPasswordHash=hash('sha256', $sDefaultAdminPassword);
                     try {
+                        
+                        if (User::model()->count()>0){
+                            die();
+                        }
                         // Save user
                         $user=new User;
                         $user->users_name=$sDefaultAdminUserName;