371,7 → 371,7 |
# Read form parameters which we care about |
# avoid the "user as a MAC address" attempts |
if ((isset($_POST['username'])) && (preg_match('/^([0-9A-F]{2}-){5}[0-9A-F]{2}$/', $_POST['username']) !== 1)) |
$username = htmlspecialchars($_POST['username']); else $username = ''; |
$username = htmlspecialchars(trim($_POST['username'])); else $username = ''; |
if (isset($_POST['password'])) $password = htmlspecialchars($_POST['password']); else $password = ''; |
if (isset($_POST['challenge'])) $challenge = htmlspecialchars($_POST['challenge']); else $challenge = ''; |
if (isset($_POST['button'])) $button = htmlspecialchars($_POST['button']); else $button = ''; |