|
Server IP : 172.16.15.8 / Your IP : 3.133.108.47 Web Server : Apache System : Linux zeus.vwu.edu 4.18.0-553.27.1.el8_10.x86_64 #1 SMP Wed Nov 6 14:29:02 UTC 2024 x86_64 User : apache ( 48) PHP Version : 7.2.24 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON Directory (0755) : /home/cngray/www/ |
| [ Home ] | [ C0mmand ] | [ Upload File ] |
|---|
<?php
session_start();
if(!isset($_SESSION['username'])){
header("location:BBWelcome.php");
} else {
?>
<html>
<center>
<?php
$username = $_SESSION['username'];
$pass = $_SESSION['pass'];
$check = $_SESSION['check'];
$_SESSION['username'] = $username;
$_SESSION['check'] = $check;
$OLD = $_POST['OP'];
$NEW = $_POST['NP'];
$COM = $_POST['CP'];
$host = 'localhost';
$user = 'cngray';
$passwd = 'vwccscngray';
$database = 'cngray';
$connect = mysqli_connect($host, $user, $passwd);
mysqli_select_db($connect, $database);
$query = "select * from BBUsers";
$Result_id = mysqli_query($connect, $query);
if((empty($OLD)) and (empty($NEW)) and (empty($COM)))
{
print "<br><br>There is an empty field, please try again.<br>";?>
<INPUT Type=button VALUE=Back onClick="location.href = 'BBPassword.php'">
<INPUT Type=button VALUE=Home onClick="location.href = 'BBMain.php'"><?php
}
else
{
if($Result_id)
{
mysqli_data_seek(mysqli_query($connect, "select Password from BBUsers where Username like '$username'"), 0);
$fetch = mysqli_fetch_array(mysqli_query($connect, "select Password from BBUsers where Username like '$username'"));
$Password = $fetch[0];
$Nquery = "update BBUsers set Password = '$NEW' where Username = '$username'";
$Nresult_id = mysqli_query($connect, $Nquery);
if(($OLD != $pass) OR ($NEW != $COM) or (!Nresult_id))
{
Print "<br><br>Password Change Failed.<br>";
?>
<INPUT Type=button VALUE=Back onClick="location.href = 'BBPassword.php'">
<INPUT Type=button VALUE=Home onClick="location.href = 'BBMain.php'">
<?php
}
else
{
?>
<P><P>Password Change Successful.<p>
<INPUT Type=button VALUE=Home onClick="location.href = 'BBMain.php'">
<?php
$_SESSION['pass'] = $NEW;
}
mysqli_close($connect);
}
}
}
?>