Skip to content

Commit 93a9a77

Browse files
author
Luiz Sanches
committed
fixed SQL injection vulnerability
1 parent 9afbf9e commit 93a9a77

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

Diff for: app/controllers/curupira/passwords_controller.rb

+1-1
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@ def new
66
end
77

88
def create
9-
@user = User.find_by(params[:user])
9+
@user = User.find_by(email: params[:user][:email])
1010
if @user.present?
1111
@user.deliver_reset_password_instructions!
1212
redirect_to new_session_path, notice: "Verifique seu email para receber instruções de recuperação de senha"

0 commit comments

Comments
 (0)