API tools faq
paste
Guest User

Untitled

a guest
Jan 22nd, 2018
364
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.39 KB | None | 0 0
raw download clone embed print report
  1. <?php
  2.  
  3.  
  4. if(isset($_POST['username']))
  5. {
  6. $name = $_POST['username'];
  7. $name = stripslashes($name);
  8. $name = mysql_real_escape_string($name);
  9.  
  10. $sql1="SELECT * FROM users WHERE username='$name'";
  11. $check=mysql_query($sql1) or die('Query failed: ' . mysql_error() . "<br />\n$sql1");
  12. if(mysql_num_rows($check) != 1)
  13. {
  14. echo "Your details aren't found!";
  15.  
  16. }
  17. else
  18. {
  19.  
  20. $_SESSION['uname'] = $_POST['username'];
  21. $uname = $_SESSION['uname'];
  22. //echo $uname."<br>";
  23. $row=mysql_fetch_array($check);
  24. $question=$row["descr"];
  25.  
  26. echo"Your question: $question <br>";
  27. echo"Your answer:
  28. <form action='' method='post'>
  29. <input type='text' name='answer' />
  30. <input type='submit' name='submit' value='Submit!' />
  31. </form>";
  32.  
  33.  
  34.  
  35. }
  36.  
  37. }
  38.  
  39. elseif(isset($_POST['answer']))
  40. {
  41.  
  42. $answer = $_POST['answer'];
  43. $uname = $_SESSION['uname'];
  44. //echo $uname."<br>";
  45.  
  46. $result = mysql_query("SELECT * FROM users WHERE username='$uname'") or die(mysql_error());
  47. $query=mysql_fetch_array($result);
  48.  
  49. //echo $_POST['answer']."<-- post answer<br>";
  50. if($query["lname"] == $answer) {
  51. //echo 'Your Password has been reset and sent to your registered email.';
  52.  
  53. $uname = $_SESSION['uname'];
  54.  
  55.  
  56.  
  57. $chars = array_merge(range('a', 'z'), range(0, 9));
  58. $len = 10;
  59. $output = '';
  60.  
  61. for ($x = 0; $x < $len; $x++)
  62. $output .= $chars[array_rand($chars)];
  63.  
  64. //$output;
  65.  
  66.  
  67.  
  68. //$newpasstoecho = rand();
  69. //$newpassmd5 = $newpasstoecho;
  70.  
  71.  
  72. mysql_query("UPDATE users SET password='$output' WHERE username='$uname'");
  73.  
  74.  
  75.  
  76.  
  77.  
  78.  
  79. $pass = $output;
  80. $mail = $query["email"];
  81.  
  82. $subject ="Your password!";
  83. $message = "Your password is: $pass";
  84. $mail_from="noreply@goverscape.com";
  85. $header="from: me";
  86. $to = $mail;
  87. $send_contact=mail($to,$subject,$message,$header);
  88. if($send_contact){
  89. echo 'Your Password has been reset and sent to your registered email.';
  90. }
  91. else {
  92. echo "Error sending the email, please try again.";
  93. }
  94.  
  95.  
  96. //echo $query["lname"]."<--result";
  97. }
  98. else {
  99. echo 'Your answer was not correct, please try again.';
  100. //echo $query["lname"]."<--result";
  101. }
  102. }
  103. else
  104. {
  105. echo "<form action='' method='post'>
  106. Your name: <input type='text' name='username' />
  107. <input type='submit' name='submit' value='Send!' />
  108. </form>";
  109. }
  110. ?>
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!