Untitled


<?php
require( $_SERVER['DOCUMENT_ROOT'].'/include/page/dbc.php' );
require( $_SERVER['DOCUMENT_ROOT'].'/include/config.php' );

	if(isset($_POST['Submit'])) {

		require_once('recaptchalib.php');

      $resp = recaptcha_check_answer ($privatekey,
                                      $_SERVER["REMOTE_ADDR"],
                                      $_POST["recaptcha_challenge_field"],
                                      $_POST["recaptcha_response_field"]);

      if (!$resp->is_valid) {
        die (
		"<div class='msg'>Image Verification failed!. Go back and try again.<br/> <form><input class='button_form' type='button' value='Go Back'
onclick='history.go(-1)'></form></div></div>
<img src='/images/down_body_image.png'/>
 <div class='footer' align='center'>
 <div class='footinfo' align='left'>
   <div class='footmenu'>
 <a href='/'> HOME </a> <a href='/forums'> FORUM </a> <a href='/'> NEWS </a> <a href='/forums/'> SUPPORT </a> <a href='/forums/'> F.A.Q </a>
   </div>
 This website and its contents was created for ".$cfg['site']." <br/>
 Optimized for resolution 1600x1200. Work well with IE 8+ , Opera 10+, Firefox 3.5+ and Chrome.<br/>
 All Rights reserved. ".$cfg['site'].". 2009-".date("Y")."
.<br/>
  </div>
 </div>
</div>
<div class='bgdown2'></div>

</body>
</html>
"
);


      }

		mysql_connect($login_host,$login_user,$login_password) or die (mysql_error());
		mysql_select_db($login_db);

	$g_check = mysql_query("SELECT COUNT(id) FROM account WHERE username='".$_POST['gebruikersnaam']."'") or die (mysql_error());


			if  ($_POST['gebruikersnaam'] == "")
		{
			echo '<div class="msg">Username cant be blank</div><br/>';
			$error = 1;
			}


		 else if(mysql_result($g_check,0) == 0) {

			echo '<div class="msg">There is no such account please check again.</div><br/>';
			$error = 1;
		 }


		$hash_trim = sprintf('%s:%s', trim(strtoupper($_POST['gebruikersnaam'])), trim(strtoupper(activatiecode(10))));
		$hash_trim = sha1($hash_trim);
		$hash_trim = strtoupper($hash_trim);


		if($error != 1) {
			$pass = activatiecode(10);
			$pass_db = md5($pass);
			$geg = mysql_fetch_assoc(mysql_query("SELECT * FROM account WHERE username='".$_POST['gebruikersnaam']."'"));
			$tpl = new TemplatePower('include/page/wachtwoord_1.tpl');
			$tpl->prepare();
			$tpl->assign(array(
				"site" => $cfg['site'],
				"url" => $cfg['url'],
				"gebruikersnaam" => $_POST['gebruikersnaam'],
				"wachtwoord" => $pass,
				"wachtwoord_nieuw" => $pass_db,
			));
			$template = $tpl->getOutputContent();


			mysql_connect($web_host ,$web_user ,$web_password);
			mysql_select_db($web_db);
			$headers  = "MIME-Version: 1.0\n";
			$headers .= "Content-type: text/html; charset=iso-8859-1\n";
			$headers  .= "From: ".$cfg['site']." <".$cfg['email'].">\n";


			//echo "<div class='msg'>".$geg['email']."</div><br/>";
			mail($geg['email'],"Request Password on ".$cfg['site']."",$template,$headers);
			mysql_connect($web_host ,$web_user ,$web_password);
			mysql_select_db($web_db);
			mysql_query("DELETE FROM leden_wacht WHERE id = '".$geg['id']."'") or die (mysql_error());
			mysql_query("INSERT INTO leden_wacht (id,password,time,username,password_real) VALUES ('".$geg['id']."','".$pass_db."','".time()."','".$_POST['gebruikersnaam']."','".$pass."')") or die (mysql_error());
			echo '<div class="msg_green">There is a e-mail sent to the email of account: '.$_POST['gebruikersnaam'].'.</div><br/>';
		}
}


/*
Hieronder volgt het stukje voor zij die op de url in de email klikken.
*/
if(isset($_GET['gebruiker']) && isset($_GET['wachtwoord'])) {
	echo '<hr noshade>';
	echo '<div class="msg">Activation via Email:<br />';
	mysql_connect($login_host,$login_user,$login_password) or die (mysql_error());
	mysql_select_db($login_db);

	$lid_id = mysql_query("SELECT id FROM account WHERE username='".$_GET['gebruiker']."'");

	if(mysql_num_rows($lid_id) != 0) {
		$lid = mysql_result($lid_id,0);

			mysql_connect($web_host ,$web_user ,$web_password);
			mysql_select_db($web_db);

		$res = mysql_result(mysql_query("SELECT COUNT(*) FROM leden_wacht WHERE password='".$_GET['wachtwoord']."' AND id='".$lid."'"),0);

		$real_password_query = mysql_query("SELECT password_real FROM leden_wacht WHERE id='".$lid."' LIMIT 1");
		if(mysql_num_rows($real_password_query) != 0) {
		$real_password = mysql_result($real_password_query,0);
		}

					$hash = sprintf('%s:%s', strtoupper($_GET['gebruiker']), strtoupper($real_password));
					$hash = sha1($hash);
					$hash = strtoupper($hash);

			if($res == 0) {
				echo 'The password didnt match the username.</div>';
			} else {
			mysql_connect($login_host,$login_user,$login_password) or die (mysql_error());
			mysql_select_db($login_db);
				mysql_query("UPDATE account SET sha_pass_hash='".$hash."', v ='0' , s ='0' WHERE id='".$lid."' LIMIT 1") or die (mysql_error());
				echo 'Your password has been updated succesfull!</div>';

			mysql_connect($web_host ,$web_user ,$web_password);
			mysql_select_db($web_db);

				mysql_query("DELETE FROM leden_wacht WHERE id='".$lid."'") or die (mysql_error());

				//echo "<br/> hash ".$hash."<br/>";
				//echo "<br/> real pawword ".$real_password."<br/>";
				//echo "<br/> user ".$_GET['gebruiker']."<br/>";
				//echo "<br/> id ".$lid."<br/>";


			}
	} else {
		echo 'This user didnt request a new password.</div>';


	}
}?>

        <table width="100%" border="0" cellspacing="0" cellpadding="5" class="main">
          <tr>
            <td colspan="3">&nbsp;</td>
          </tr>
          <tr>
            <td width="160" valign="top"><p>&nbsp;</p>
              <p>&nbsp; </p>
              <p>&nbsp;</p>
              <p>&nbsp;</p>
              <p>&nbsp;</p></td>
            <td width="732" valign="top">
        <h3 class="titlehdr">Forgot Password</h3>
      <p>If you have forgot the account password, you can <strong>reset password</strong>
        and a new password will be sent to your email address.</p>

      <form action="/p.php?n=forgot" method="post" name="gebruikersnaam" id="actForm" >
        <table width="65%" border="0" cellpadding="4" cellspacing="4" class="loginform">
          <tr>
            <td colspan="2">&nbsp;</td>
          </tr>
          <tr>
            <td width="36%">Your Username</td>
            <td width="64%"><input name="gebruikersnaam" type="text" class="required" id="txtboxn" size="25" /></td>
          </tr>
          <tr>
          <td>
            <?php
			require_once('recaptchalib.php');

				echo recaptcha_get_html($publickey);
			?>
          </td>
          </tr>
          <tr>
            <td colspan="2"> <div align="center">
                <p>
                  <input name="Submit" class="button_form" type="submit" id="doLogin3" value="Reset" />
                </p>
              </div></td>
          </tr>
        </table>
        <div align="center"></div>
        <p align="center">&nbsp; </p>
      </form>


      <p align="left">&nbsp; </p></td>
    <td width="196" valign="top">&nbsp;</td>
  </tr>
  <tr>
    <td colspan="3">&nbsp;</td>
  </tr>
</table>