Index: /mods/wpsg_mod_kundenverwaltung.class.php
===================================================================
--- /mods/wpsg_mod_kundenverwaltung.class.php	(revision 7530)
+++ /mods/wpsg_mod_kundenverwaltung.class.php	(revision 7531)
@@ -1943,7 +1943,7 @@
 			
 			wpsg_checkRequest('knr', [WPSG_SANITIZE_TEXTFIELD], __('Kundennummer', 'wpsg'), $data);
-			wpsg_checkRequest('geb', [WPSG_SANITIZE_DATE], __('Geburtsdatum', 'wpsg'), $data);			
-			wpsg_checkRequest('email', [WPSG_SANITIZE_EMAIL], __('E-Mail', 'wpsg'), $data);
-			wpsg_checkRequest('ustidnr', [WPSG_SANITIZE_USTIDNR], __('UStIdNr.', 'wpsg'), $data);
+			wpsg_checkRequest('geb', [WPSG_SANITIZE_DATE, ['allowEmpty' => true]], __('Geburtsdatum', 'wpsg'), $data);			
+			wpsg_checkRequest('email', [WPSG_SANITIZE_EMAIL, ['allowEmpty' => true]], __('E-Mail', 'wpsg'), $data);
+			wpsg_checkRequest('ustidnr', [WPSG_SANITIZE_USTIDNR, ['allowEmpty' => true]], __('UStIdNr.', 'wpsg'), $data);
 			wpsg_checkRequest('comment', [WPSG_SANITIZE_TEXTAREA], __('Kundenkommentar', 'wpsg'), $data);
 			wpsg_checkRequest('status', [WPSG_SANITIZE_TEXTAREA], __('Status', 'wpsg'), $data);
@@ -1973,5 +1973,5 @@
 			if (isset($_REQUEST['nr'])) wpsg_checkRequest('nr', [WPSG_SANITIZE_TEXTFIELD], __('Nr', 'wpsg'), $adata);
 			
-			wpsg_checkRequest('plz', [WPSG_SANITIZE_ZIP], __('PLZ', 'wpsg'), $adata);
+			wpsg_checkRequest('plz', [WPSG_SANITIZE_ZIP, ['allowEmpty' => true]], __('PLZ', 'wpsg'), $adata);
 			wpsg_checkRequest('ort', [WPSG_SANITIZE_TEXTFIELD], __('Ort', 'wpsg'), $adata);
 			wpsg_checkRequest('land', [WPSG_SANITIZE_TEXTFIELD], __('Land', 'wpsg'), $adata);
@@ -1989,13 +1989,17 @@
 			wpsg_checkRequest('password2', [WPSG_SANITIZE_TEXTFIELD, ['allowEmpty' => true]], __('Passwort Wiederholung', 'wpsg'), $_REQUEST);
 			
-			if ($_REQUEST['password1'] == $_REQUEST['password2'] && trim($_REQUEST['password1']) != '') {
-				
-				$data['passwort_saltmd5'] = $this->hashString($_REQUEST['password1']);
-								
-				$this->shop->addBackendMessage(__('Passwort wurde erfolgreich geÃ€ndert.', 'wpsg'));
-								
-			} else if (trim($_REQUEST['password1']) != '' || trim($_REQUEST['password2']) != '') {
-				
-				$this->shop->addBackendError(__('Passwort wurde nicht geÃ€ndert, da die Wiederholung nicht ÃŒbereinstimmte.', 'wpsg'));
+			if (wpsg_isSizedString($_REQUEST['password1']) || wpsg_isSizedString($_REQUEST['password2'])) {
+			
+				if ($_REQUEST['password1'] === $_REQUEST['password2'] && trim($_REQUEST['password1']) != '') {
+					
+					$data['passwort_saltmd5'] = $this->hashString($_REQUEST['password1']);
+									
+					$this->shop->addBackendMessage(__('Passwort wurde erfolgreich geÃ€ndert.', 'wpsg'));
+									
+				} else if (trim($_REQUEST['password1']) != '' || trim($_REQUEST['password2']) != '') {
+					
+					$this->shop->addBackendError(__('Passwort wurde nicht geÃ€ndert, da die Wiederholung nicht ÃŒbereinstimmte.', 'wpsg'));
+					
+				}
 				
 			}