From e8ec1beaab87f37260d055204b39b123bcef658b Mon Sep 17 00:00:00 2001
From: Liran Tal <liran.tal@gmail.com>
Date: Fri, 1 Apr 2022 19:10:16 +0300
Subject: [PATCH] fix: apply a security fix due to Type Confusion and potential
 authentication bypass

---
 daloradius-users/pref-auth-password-edit.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/daloradius-users/pref-auth-password-edit.php b/daloradius-users/pref-auth-password-edit.php
index 9263b6899..d192023c0 100644
--- a/daloradius-users/pref-auth-password-edit.php
+++ b/daloradius-users/pref-auth-password-edit.php
@@ -36,7 +36,7 @@
 		$newPassword = $_POST['newpassword'];
 		$verifyPassword = $_POST['verifypassword'];
 
-		if ($newPassword == $verifyPassword) {
+		if ($newPassword === $verifyPassword) {
 
 			if (trim($currentPassword) != "") {