<?php $username = $_GET["user"];$oldpassword = $_POST['old-password']; $p

1. <?php
2. $username =  $_GET["user"];
3. $oldpassword = $_POST['old-password'];
4. $password = $_POST['password'];
5. $secpassword = $_POST['sec-password'];
6.  
7. include ("connect.php") ;
8.  
9. mysql_select_db("cms-neerup", $con) ;
10.  
11.  
12. $result = mysql_query("SELECT * FROM brugere WHERE Brugernavn = '$username'");
13. $row = mysql_fetch_array($result) ;
14.  
15. echo $row['Password'] ;
16.  
17. if ($oldpassword == $row['Password']) {
18.  
19. if($password == $secpassword) {
20.  
21. mysql_query("UPDATE brugere SET Password=".$password." WHERE Brugernavn=$username) OR die(mysql_error());
22.  
23.  
24. echo "Dit gamle password er $oldpassword </bh>";
25. echo "Dit nye password $password " ;
26.  
27. }
28. }
29. ?>