<?php
if (!defined('EXEC_TIME')) {
die('Access restricted');
}
global $PHP_SELF;
list($id, $action, $is_forgetme) = GET('id, action, isforgetme', 'GPG');
// Prevent false as 'false'
if ($is_forgetme === 'false') {
$is_forgetme = false;
}
// Logout user if clicked on "Forget me"
if ($is_forgetme) {
cn_logout($_REQUEST['referer']);
return FALSE;
}
$id = cn_id_alias($id);
// ------------------------------------
$user = member_get();
if ($user) {
$logged_as_member = TRUE;
$name = $user['name'];
$mail = $user['email'];
} else {
$logged_as_member = FALSE;
$name = trim(REQ('name', 'POST'));
$mail = trim(REQ('mail', 'POST'));
}
$comment = trim(REQ('comments', 'POST'));
$refer = cn_htmlspecialchars(REQ('referer'));
$regex_site = '/(ftps?|n?ntp|pop3|https?):\\/\\/[^\\s]+/is';
<?php
require_once './include/common.php';
$op = empty($_GET['op']) ? 'default' : $_GET['op'];
switch ($op) {
case "changepasswd":
change_password();
break;
case "logout":
cn_logout();
break;
default:
cn_login();
break;
}
function change_password()
{
global $COLLATE;
global $dbo;
include 'include/validation_functions.php';
if (isset($_GET['returnto'])) {
$returnto = urldecode($_GET['returnto']);
} else {
$returnto = "";
}
if (isset($_GET['action'])) {
$action = $_GET['action'];
} else {
$action = "show form";
}
if ($action != "change") {
