Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- require_once("common.php");
- error_reporting(E_ALL);
- $user = @$_POST['user'];
- $pw = "";
- $alpha = "abcdefghijklmnopqrstuvwxyz";
- for ($i = 0; $i < 8; $i++)
- $pw .= $alpha[mt_rand(0, 25)];
- $hash_pw = sha1($user . $pw);
- $qry = mysql_query("SELECT * FROM `players` WHERE username = '" . mysql_real_escape_string($user) . "';");
- $row = mysql_fetch_assoc($qry);
- $email = $row['email'];
- if(empty($email)) {
- echo 'This user has no email please set an email to activate a password reset';
- } else {
- mysql_select_db("emps");
- mysql_query("UPDATE `players` SET password = '" . $hash_pw . "', password_salt=NULL, hash_func='' WHERE username = '" . mysql_real_escape_string($user) . "';");
- generate_mail(6, $user, $email, $pw);
- echo '<p>A new password for <?php echo htmlentities($user); ?> was sent to <?php echo $email; ?>.</p>
- <p><a href="index.php">OK</a></p>';
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement