PageRenderTime 45ms CodeModel.GetById 16ms RepoModel.GetById 0ms app.codeStats 0ms

/admin/pass_recovery.php

https://github.com/aravindc/pixelpost
PHP | 70 lines | 59 code | 7 blank | 4 comment | 8 complexity | f54fcb25d7b89e6aef5744849b08431e MD5 | raw file
Possible License(s): GPL-2.0 
    

  1. <?php
    2. 

  2. 

  3. // SVN file version:
    4. 

  4. // $Id$
    5. 

  5. 

  6. // forgot password?
    7. 

  7. if(isset($_GET['x']) && $_GET['x']=='passreminder')
    8. 

  8. {
    9. 

  9. echo "<!DOCTYPE html PUBLIC \"-//W3C//DTD XHTML 1.0 Transitional//EN\"
    10. 

  10.   \"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd\">
    11. 

  11. 	<html>
    12. 

  12. 	<head><title>$admin_lang_pw_title</title>
    13. 

  13. 	<meta http-equiv=\"Content-Type\" content=\"text/html;charset=utf-8\" /></head>
    14. 

  14. 	<body>
    15. 

  15. 	<p style=\"border:solid 2px;padding:5px;color:red;font-weight:bold;font-size:11px;margin-left:auto;margin-right:auto;margin-top:10%;font-family:verdana,arial,sans-serif;text-align:center;\">";
    16. 

  16. 

  17. 	if ($cfgrow['admin']!= $_POST['user'])
    18. 

  18. 	{
    19. 

  19. 		echo "<span class=\"confirm\">$admin_lang_pw_wronguser</span><br />";
    20. 

  20. 		echo "<br /><a href='index.php'>$admin_lang_pw_back</a></body></html>";
    21. 

  21. 		die();
    22. 

  22. 	}
    23. 

  23. 	if ($cfgrow['email']== "")
    24. 

  24. 	{
    25. 

  25. 		echo "<span class=\"confirm\">$admin_lang_pw_noemail</span><br />";
    26. 

  26. 		echo "<br /><a href='index.php' > $admin_lang_pw_back </a></body></html>";
    27. 

  27. 		die();
    28. 

  28. 	}
    29. 

  29. 

  30. 	if (strtolower($cfgrow['email'])==strtolower($_POST['reminderemail']))
    31. 

  31. 	{
    32. 

  32. 		// generate a random new pass
    33. 

  33. 		$user_pass = substr( MD5('time' . rand(1, 16000)), 0, 6);
    34. 

  34. 		$query = "update ".$pixelpost_db_prefix."config set password=MD5('$user_pass') where admin='".$cfgrow['admin']."'";
    35. 

  35. 		if(mysql_query($query))
    36. 

  36. 		{
    37. 

  37. 			$subject = "$admin_lang_pw_subject";
    38. 

  38. 			$body  = "$admin_lang_pw_text_1 \n\n";
    39. 

  39. 			$body .= "$admin_lang_pw_usertext ".$cfgrow['admin']." \n";
    40. 

  40. 			$body .= "$admin_lang_pw_mailtext ".$cfgrow['email']." \n\n";
    41. 

  41. 			$body .= "$admin_lang_pw_newpw $user_pass";
    42. 

  42. 			$body .= "\n\n$admin_lang_pw_text_7".$cfgrow['siteurl']."admin $admin_lang_pw_text_8";
    43. 

  43. 

  44. 			$headers = "Content-type: text/plain; charset=UTF-8\n";
    45. 

  45. 			$headers .= "$admin_lang_pw_text_2 <".$cfgrow['email'].">\n";
    46. 

  46. 

  47. 			$recipient_email = $cfgrow['email'];
    48. 

  48. 			if (mail($recipient_email,$subject,$body,$headers))
    49. 

  49. 				{echo "$admin_lang_pw_text_3" .$cfgrow['email'];}
    50. 

  50. 			else { echo "$admin_lang_pw_text_3";}
    51. 

  51. 			echo "<br /><a href='index.php' > $admin_lang_pw_back </a></body></html>";
    52. 

  52. 			die();
    53. 

  53. 		}
    54. 

  54. 		else
    55. 

  55. 		{
    56. 

  56. 			$dberror = mysql_error();
    57. 

  57. 			echo "$admin_lang_pw_text_5 " .$dberror ."$admin_lang_pw_text_5 " ;
    58. 

  58. 				echo "<br /><a href='index.php' > $admin_lang_pw_back </a></body></html>";
    59. 

  59. 			die();
    60. 

  60. 		}
    61. 

  61. 	}
    62. 

  62. 	else
    63. 

  63. 	{
    64. 

  64. 		echo "<span class=\"confirm\">$admin_lang_pw_notsent</span><br />";
    65. 

  65. 		echo "<br /><a href='index.php'> $admin_lang_pw_back </a></body></html>";
    66. 

  66. 		die();
    67. 

  67. 	}// end else (strtolower($cfgrow['email'])==strtolower($_POST['reminderemail']) & $cfgrow['email']!= "")
    68. 

  68. 

  69. } // end if($_GET['x']=='passreminder')
    70. 

  70. ?>
    71.