diff options
-rw-r--r-- | Bugzilla/Auth/Login/WWW/Env.pm | 8 |
1 files changed, 6 insertions, 2 deletions
diff --git a/Bugzilla/Auth/Login/WWW/Env.pm b/Bugzilla/Auth/Login/WWW/Env.pm index 985393206..39bea28df 100644 --- a/Bugzilla/Auth/Login/WWW/Env.pm +++ b/Bugzilla/Auth/Login/WWW/Env.pm @@ -51,8 +51,12 @@ sub login { for ($env_id, $env_email, $env_realname) { $_ ||= '' }; # make sure the email field contains only a valid email address my $emailregexp = Param("emailregexp"); - $env_email =~ /($emailregexp)/; - $env_email = $1; + if ($env_email =~ /($emailregexp)/) { + $env_email = $1; + } + else { + return undef; + } # untaint the remaining values trick_taint($env_id); trick_taint($env_realname); |