From 93f748e6a83964cf40a22073acd0e2511eb4ca0b Mon Sep 17 00:00:00 2001
From: 8chan Admin <admin@8chan.co>
Date: Thu, 13 Feb 2014 01:04:32 +0000
Subject: [PATCH] Security: capitalization of mods username is significant

---
 inc/mod/auth.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/inc/mod/auth.php b/inc/mod/auth.php
index d877b89f..7f98e8a9 100644
--- a/inc/mod/auth.php
+++ b/inc/mod/auth.php
@@ -76,7 +76,7 @@ function generate_salt() {
 function login($username, $password) {
 	global $mod, $config;
 	
-	$query = prepare("SELECT `id`, `type`, `boards`, `password`, `version` FROM ``mods`` WHERE `username` = :username");
+	$query = prepare("SELECT `id`, `type`, `boards`, `password`, `version` FROM ``mods`` WHERE BINARY `username` = :username");
 	$query->bindValue(':username', $username);
 	$query->execute() or error(db_error($query));