Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- if (isset($_POST['check'])){
- if (isset($_SESSION['username'])){
- $usernameactual = mysqli_real_escape_string($conexion, $_SESSION['username']);
- $cactual = mysqli_real_escape_string($conexion, hash('sha512', hash('sha512', $_POST['cactual'])));
- $query1 = "SELECT * FROM `users` WHERE username='$usernameactual' and password='$cactual'";
- $result1 = mysqli_query($conexion,$query1);
- $rows2 = mysqli_num_rows($result1);
- if($rows2==1){
- $c_nohash = $_POST['cnueva'];
- $cnueva = hash('sha512', hash('sha512', $_POST['cnueva']));
- $cnueva2 = hash('sha512', hash('sha512', $_POST['cnueva_v']));
- $query2 = "UPDATE `users` SET `password` = '$cnueva' WHERE `username` = '$usernameactual'";
- if($c_nohash < 6){
- echo 'Tu contraseña es demasiado corta';
- } else {
- if($cnueva == $cnueva2){
- $cambiarclave = mysqli_query($conexion,$query2);
- if($cambiarclave==1){
- echo 'Contraseña cambiada';
- } else {
- echo 'Error inesperado';
- }
- } else {
- echo 'Tus contraseñas no coinciden';
- }
- }
- } else {
- echo '<div class="alert alert-danger" role="alert">
- <center><strong>¡Eh, para un momento!</strong> Esa contraseña no es tu contraseña actual...</center>
- </div>';
- }
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement