$error[] = $MESSAGE['USERS_INVALID_EMAIL'] . "\n"; } } if (sizeof($error) == 0) { // MD5 supplied password $md5_password = md5($new_pass); // Inser the user into the database $sql = ''; $sql = 'INSERT INTO `' . TABLE_PREFIX . 'users` SET ' . '`group_id` = ' . $database->escapeString($groups_id) . ', ' . '`groups_id` = \'' . $database->escapeString($groups_id) . '\', ' . '`active` = ' . $database->escapeString($active) . ', ' . '`username` = \'' . $database->escapeString($username) . '\', ' . '`password` = \'' . $database->escapeString($md5_password) . '\', ' . '`display_name` = \'' . $database->escapeString($display_name) . '\', ' . '`home_folder` = \'\', ' . '`email` = \'' . $database->escapeString($email) . '\', ' . '`timezone` = \'' . $database->escapeString(DEFAULT_TIMEZONE) . '\', ' . '`language` = \'' . $database->escapeString(DEFAULT_LANGUAGE) . '\'' . ''; $database->query($sql); if ($database->is_error()) { // Error updating database $message = $database->get_error(); } else { // Setup email to send $mail_to = $email; $mail_subject = $MESSAGE['SIGNUP2_SUBJECT_LOGIN_INFO']; // Replace placeholders from language variable with values $search = array('{LOGIN_DISPLAY_NAME}', '{LOGIN_WEBSITE_TITLE}', '{LOGIN_NAME}', '{LOGIN_PASSWORD}'); $replace = array($display_name, WEBSITE_TITLE, $username, $new_pass); $mail_message = str_replace($search, $replace, $MESSAGE['SIGNUP2_BODY_LOGIN_INFO']); // Try sending the email if ($wb->mail(SERVER_EMAIL, $mail_to, $mail_subject, $mail_message)) { $display_form = false; $success[] = $MESSAGE['FORGOT_PASS_PASSWORD_RESET']; } else { $database->query("DELETE FROM `" . TABLE_PREFIX . "users` WHERE `username` = '{$username}'"); $error[] = $MESSAGE['FORGOT_PASS_CANNOT_EMAIL'] . "\n"; } } }