Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- function password_change_form()
- {
- global $db, $params, $cfg;
- if (get_config("db=members&name=passwordrecovery&type=integer") != 1) return;
- $code = $params[3];
- $uid = mysql_real_escape_string($params[4]);
- $user = get_user("username=".$un);
- if ($code == md5(sha1($user['username']).$user['password']))
- {
- $emailfrom = get_user_config("name=emailfrom");
- $newpassword = generatePassword();
- $db->query("UPDATE `members` SET `password` = '".md5($newpassword)."' WHERE `username` = '".$un."'");
- $message = file_get_contents($cfg['instdir']."plugins/users/newpasswordmessage.txt");
- $message = str_replace("[username]", $user['username'], $message);
- $message = str_replace("[newpassword]", $newpassword, $message);
- $message = str_replace("[baseurl]", $cfg['baseurl'], $message);
- $headers = 'From: '.$emailfrom."\r\n".
- 'Reply-To: '.$emailfrom."\r\n".
- 'X-Mailer: PHP/'.phpversion();
- mail($user['email'], "Password Recovery", $message, $headers);
- language("passwordchangedsent");
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
