Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- if (isset($_POST['account'])) {
- if ($_POST['account'] && strlen($_POST['account'])<=20 && strlen($_POST['account'])>=3 && strlen($_POST['password'])>=3 && $_POST['password'] && $_POST['password2'] && $_POST['password']==$_POST['password2']) {
- if (!eregi("^[a-zA-Z0-9_]+$", $_POST['account']))
- die ("<p>Error: SQL-Injection</p>");
- if (!eregi("^[a-zA-Z0-9_]+$", $_POST['password']))
- die ("<p>Error: SQL-Injection</p>");
- $pass = ($_POST['password']);
- $username = ($_POST['account']);
- $result = mysql_query("SELECT * FROM account WHERE username='".$_POST['account']."'", $realmd);
- if (mysql_num_rows($result) != 0) {
- echo "<center><p><font color=#CC0000><b>Такой аккаунт уже существует!</b></font></p></center>";
- } else {
- }
- } else {
- echo "<center><p><font color=#CC0000><b>Проверьте правильность ввода!</b></font></p></center>";
- }
- if(count($_POST)>0){
- if(isset($_SESSION['captcha_keystring']) && $_SESSION['captcha_keystring'] === $_POST['keystring']){
- echo "Correct";
- if (!mysql_query("INSERT INTO account (username, sha_pass_hash, email, expansion) VALUES ('$username', SHA1(CONCAT(UPPER('$username'),':',UPPER('$pass')) ), '".$_POST['email']."', $tbc)", $realmd)) {echo "<center><p><font color=#CC0000><b>Ошибка</b></font></p></center>";} else {echo "<center><p><font color=#00CC00><b>Аккаунт успешно зарегистрирован!</b></font></p></center>";}
- }else{
- echo "Wrong";
- }
- }
- unset($_SESSION['captcha_keystring']);
- }
- ?>
Add Comment
Please, Sign In to add comment
