From b6c1e6d6ec4e48e3b5a83c0939ce8f2e86ea3cc7 Mon Sep 17 00:00:00 2001
From: Supercrafter100 <58982133+supercrafter100@users.noreply.github.com>
Date: Sat, 21 Dec 2024 17:25:45 +0100
Subject: [PATCH] Fix users being able to bypass email verification (#3569)

* Fix users being able to bypass email verification

* Remove comment

* Use single quotes
---
 core/classes/Core/Validate.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/core/classes/Core/Validate.php b/core/classes/Core/Validate.php
index 85021fdc80..bd157146c5 100644
--- a/core/classes/Core/Validate.php
+++ b/core/classes/Core/Validate.php
@@ -299,7 +299,7 @@ public static function check(array $source, array $items = []): Validate
                         break;
 
                     case self::IS_ACTIVE:
-                        $check = $validator->_db->get('users', [$item, $value]);
+                        $check = $validator->_db->query('SELECT * FROM nl2_users WHERE username = ? OR email = ?', [$value, $value]);
                         if (!$check->count()) {
                             break;
                         }