[PHP] Help please.

RedCrisps · 13-01-2008, 12:11 PM

why won't this code work, so the password changes:

PHP Code:


<?php
if(isset($_SESSION["EON_CNTPNL_USERNAME"]))
{ $check->login(); }
else{
session_start();
include("functions.php");
$check = new checklogin;
$check->login(); }
echo("
                  <b>Edit your password!</b><br/>
                 <br/>");
if($_GET["act"] == "update")
{
    $password = clean($_POST["password"]);
    $password2 = md5($password);
$password2 = sha1($password2);
    mysql_query("UPDATE `users` SET `password` = '$password2' WHERE `username` = '{$_SESSION["panel_username"]}'");
    echo("Password Updated");
    exit;
}
else
{
    $rand = generateRandStr(13);
    echo("Please set a new password:<br/><form action=\"?page=editpass&act=update\" method=\"POST\"><input type=\"text\" name=\"password\" value=\"$rand\" class=\"formbox\"> <b><-- Suggested</b><br/><br/><input type=\"submit\" name=\"submit\" value=\"Change Password\"><br/><br/>
    The suggested password was $rand<br/>(So you can copy and paste)</form>");
}
?>

Flisker · 13-01-2008, 12:48 PM

And whats the error?

RedCrisps · 13-01-2008, 01:06 PM

The password won't change

MrCraig · 13-01-2008, 03:59 PM

Change..

PHP Code:


mysql_query("UPDATE `users` SET `password` = '$password2' WHERE `username` = '{$_SESSION["panel_username"]}'");

To

PHP Code:


mysql_query("UPDATE `users` SET `password` = '$password2' WHERE `username` = '$_SESSION[EON_CNTPNL_USERNAME]'");

That should work

~~MountainDew~~ · 13-01-2008, 04:15 PM

PHP Code:


<?php
if(isset($_SESSION["EON_CNTPNL_USERNAME"]))
{ $check->login(); }
else{
    session_start();
    include("functions.php");
    $check = new checklogin;
    $check->login(); }
    echo("
                  <b>Edit your password!</b><br/>
                 <br/>");
    if($_GET["act"] == "update")
    {
        $password = clean($_POST["password"]);
        $password2 = md5($password);
        $password2 = sha1($password2);
        $username = $_SESSION["panel_username"];
        mysql_query("UPDATE `users` SET `password` = '$password2' WHERE `username` = '$username'") or die(mysql_error());
        echo("Password Updated");
        exit;
    }
    else
    {
        $rand = generateRandStr(13);
        echo("Please set a new password:<br/><form action=\"?page=editpass&act=update\" method=\"POST\"><input type=\"text\" name=\"password\" value=\"$rand\" class=\"formbox\"> <b><-- Suggested</b><br/><br/><input type=\"submit\" name=\"submit\" value=\"Change Password\"><br/><br/>
    The suggested password was $rand<br/>(So you can copy and paste)</form>");
    }
?>

RedCrisps · 13-01-2008, 04:24 PM

ty for the help i will try as soon as i get my laptop back

MrCraig · 13-01-2008, 04:25 PM

Caleb, thats the same as the first version?

panel_username isnt the session variable :rolleyes:

~~MountainDew~~ · 13-01-2008, 04:27 PM

Originally Posted by MrCraig

Caleb, thats the same as the first version?

panel_username isnt the session variable :rolleyes:

How do you know that? Its included in his version, also it is not the same as the first version, the first version has no error handling.

You don't know that is not the session, at the top it gives another session to check against, but that doesn't mean the same...

MrCraig · 13-01-2008, 04:32 PM

Buy surely dan wouldnt set 2 username variables?

Hitman · 13-01-2008, 04:38 PM

Yeah I noticed the var $password 2 is being used twice, maybe that's a problem?

Thread: [PHP] Help please.

Thread Tools

[PHP] Help please.

Members who have read this thread: 0

Posting Permissions