diff --git a/wp-admin/auth.php b/wp-admin/auth.php
index 995a641ad..def8fc48c 100644
--- a/wp-admin/auth.php
+++ b/wp-admin/auth.php
@@ -14,7 +14,7 @@ function veriflog() {
return false;
}
- if (!($user_login != ''))
+ if ('' == $user_login)
return false;
if (!$user_pass_md5)
return false;
@@ -23,6 +23,7 @@ function veriflog() {
if (!$login) {
return false;
+
} else {
if ($login->user_login == $user_login && md5($login->user_pass) == $user_pass_md5) {
return true;
diff --git a/wp-admin/profile.php b/wp-admin/profile.php
index fbc004c50..a3e464339 100644
--- a/wp-admin/profile.php
+++ b/wp-admin/profile.php
@@ -79,7 +79,8 @@ case 'update':
die (__("ERROR: you typed two different passwords. Go back to correct that."));
$newuser_pass = $_POST["pass1"];
$updatepassword = "user_pass=MD5('$newuser_pass'), ";
- setcookie("wordpresspass_".$cookiehash,md5($newuser_pass),time()+31536000);
+ setcookie('wordpresspass_'.$cookiehash, " ", time() - 31536000, COOKIEPATH);
+ setcookie('wordpresspass_'.$cookiehash, md5(md5($newuser_pass)), time() + 31536000, COOKIEPATH);
}
$newuser_firstname=addslashes(stripslashes($_POST['newuser_firstname']));
@@ -246,6 +247,10 @@ default:
th { text-align: right; }