public function addRecipients($sendTo = array(), $fileId) { if (empty($sendTo)) { return false; } $randlib = new random(); foreach ($sendTo as $key => $value) { $token = $randlib->generateRandomString(rand(SITE_TOKEN_MIN_LENGTH, SITE_TOKEN_MAX_LENGTH)); $sql = "INSERT IGNORE INTO `" . DB_TABLE_PREFIX . "recipients` ( "; $sql .= "`parent_id`, "; $sql .= "`custom_token`, "; $sql .= "`email` "; $sql .= ") VALUES ( "; $sql .= "'" . mysql_real_escape_string($fileId) . "', "; $sql .= "'" . mysql_real_escape_string($token) . "', "; $sql .= "'" . mysql_real_escape_string($value) . "' "; $sql .= "); "; $res = mysql_query($sql) or die(mysql_error() . "\nSQL: " . $sql); } return true; }
public function resetPasswordByResetCode($code) { $sql = "SELECT * FROM `" . DB_TABLE_PREFIX . "password_reset` "; $sql .= "WHERE `code` = '" . mysql_real_escape_string(trim($code)) . "' "; $sql .= "LIMIT 1"; $res = mysql_query($sql) or die(mysql_error() . '<br>' . $sql); if (mysql_num_rows($res) > 0) { require_once 'randlib.class.php'; $data = mysql_fetch_assoc($res); $this->deletePasswordResetCodeById($data['id']); return $this->changePasswordById($data['user_id'], random::generateRandomString()); } return false; }