diff --git a/src/init/init_db.ts b/src/init/init_db.ts
index 3d3fed4..559708b 100644
--- a/src/init/init_db.ts
+++ b/src/init/init_db.ts
@@ -10,7 +10,7 @@ let createSQLStmt = `CREATE TABLE IF NOT EXISTS users
 db.exec(createSQLStmt);
 
 // check if there are any users; if not add one default admin one
-const userPassword = 'pass-123';
+const userPassword = 'A-InnoHUB_2025!';
 const hashedUserPassword = new jsSHA('SHA-512', 'TEXT').update(userPassword).getHash('HEX');
 const checkInsertSQLStmt = `INSERT INTO users (name, pw) SELECT 'admin', '${hashedUserPassword}'
                     WHERE NOT EXISTS (SELECT * FROM users);`;
diff --git a/src/routes/(angemeldet)/upload/+page.server.ts b/src/routes/(angemeldet)/upload/+page.server.ts
index 204c3d1..7045e3b 100644
--- a/src/routes/(angemeldet)/upload/+page.server.ts
+++ b/src/routes/(angemeldet)/upload/+page.server.ts
@@ -35,9 +35,9 @@ export const actions = {
 			const vorgang = getVorgangByName(vorgangName);
 			vorgangToken = vorgang.token;
 			if (vorgang && vorgang.pin != vorgangPIN) {
-				const updateSQLStmt = `UPDATE cases SET pin = ? WHERE name = ?`;
+				const updateSQLStmt = `UPDATE cases SET pin = ? WHERE token = ?`;
 				const statement = db.prepare(updateSQLStmt);
-				statement.run(vorgangPIN, vorgang);
+				statement.run(vorgangPIN, vorgangToken);
 			}
 		}