function mail_password($username, $code)
{
global $sitename, $adminmail, $nukeurl, $user_prefix, $db, $module_name;
$username = substr(htmlspecialchars(str_replace("\\'", "'", trim($username))), 0, 25);
$username = rtrim($username, "\\");
$username = str_replace("'", "\\'", $username);
$sql = "SELECT user_email, user_password FROM " . $user_prefix . "_users WHERE username='******'";
$result = $db->sql_query($sql);
if ($db->sql_numrows($result) == 0) {
include "header.php";
OpenTable();
echo "<center>" . _SORRYNOUSERINFO . "</center>";
CloseTable();
include "footer.php";
} else {
$host_name = $_SERVER['REMOTE_ADDR'];
$row = $db->sql_fetchrow($result);
$user_email = filter($row['user_email'], "nohtml");
$user_password = $row['user_password'];
$user_password = htmlspecialchars(stripslashes($user_password));
$areyou = substr($user_password, 0, 10);
if ($areyou == $code) {
$newpass = makepass();
$message = "" . _USERACCOUNT . " '{$username}' " . _AT . " {$sitename} " . _HASTHISEMAIL . " " . _AWEBUSERFROM . " {$host_name} " . _HASREQUESTED . "\n\n" . _YOURNEWPASSWORD . " {$newpass}\n\n " . _YOUCANCHANGE . " {$nukeurl}/modules.php?name={$module_name}\n\n" . _IFYOUDIDNOTASK . "";
$subject = "" . _USERPASSWORD4 . " {$username}";
mail($user_email, $subject, $message, "From: {$adminmail}\nX-Mailer: PHP/" . phpversion());
/* Next step: add the new password to the database */
$cryptpass = md5($newpass);
$query = "UPDATE " . $user_prefix . "_users SET user_password='******' WHERE username='******'";
if (!$db->sql_query($query)) {
echo "" . _UPDATEFAILED . "";
}
include "header.php";
OpenTable();
echo "<center>" . _PASSWORD4 . " {$username} " . _MAILED . "<br><br>" . _GOBACK . "</center>";
CloseTable();
include "footer.php";
/* If no Code, send it */
} else {
$sql = "SELECT user_email, user_password FROM " . $user_prefix . "_users WHERE username='******'";
$result = $db->sql_query($sql);
if ($db->sql_numrows($result) == 0) {
include "header.php";
OpenTable();
echo "<center>" . _SORRYNOUSERINFO . "</center>";
CloseTable();
include "footer.php";
} else {
$host_name = $_SERVER['REMOTE_ADDR'];
$row = $db->sql_fetchrow($result);
$user_email = filter($row['user_email'], "nohtml");
$user_password = $row['user_password'];
$areyou = substr($user_password, 0, 10);
$message = "" . _USERACCOUNT . " '{$username}' " . _AT . " {$sitename} " . _HASTHISEMAIL . " " . _AWEBUSERFROM . " {$host_name} " . _CODEREQUESTED . "\n\n" . _YOURCODEIS . " {$areyou} \n\n" . _WITHTHISCODE . " {$nukeurl}/modules.php?name={$module_name}&op=pass_lost\n" . _IFYOUDIDNOTASK2 . "";
$subject = "" . _CODEFOR . " {$username}";
mail($user_email, $subject, $message, "From: {$adminmail}\nX-Mailer: PHP/" . phpversion());
include "header.php";
OpenTable();
echo "<center>" . _CODEFOR . " {$username} " . _MAILED . "<br><br>" . _GOBACK . "</center>";
CloseTable();
include "footer.php";
}
}
}
}
function finishNewUser($uname, $name, $email, $user_avatar, $user_icq, $user_occ, $user_from, $user_intrest, $user_sig, $user_viewemail, $user_aim, $user_yim, $user_msnm, $pass, $user_lnl, $C1, $C2, $C3, $C4, $C5, $C6, $C7, $C8, $M1, $M2, $T1, $T2, $B1)
{
global $NPDS_Prefix;
global $makepass, $system, $adminmail, $sitename, $AutoRegUser, $memberpass, $gmt;
$stop = userCheck($uname, $email);
$user_regdate = time() + $gmt * 3600;
$stop = userCheck($uname, $email);
if (!$stop) {
include "header.php";
if (!$memberpass) {
$makepass = makepass();
} else {
$makepass = $pass;
}
if (!$system) {
$cryptpass = crypt($makepass, $makepass);
} else {
$cryptpass = $makepass;
}
$result = sql_query("INSERT INTO " . $NPDS_Prefix . "users VALUES (NULL,'{$name}','{$uname}','{$email}','','','{$user_avatar}','{$user_regdate}','{$user_icq}','{$user_occ}','{$user_from}','{$user_intrest}','{$user_sig}','{$user_viewemail}','','{$user_aim}','{$user_yim}','{$user_msnm}','','{$cryptpass}','10','','0','0','0','','0','','','10','0','0','1','0','','','{$user_lnl}')");
list($usr_id) = sql_fetch_row(sql_query("SELECT uid FROM " . $NPDS_Prefix . "users WHERE uname='{$uname}'"));
$result = sql_query("INSERT INTO " . $NPDS_Prefix . "users_extend VALUES ('{$usr_id}','{$C1}','{$C2}','{$C3}','{$C4}','{$C5}','{$C6}','{$C7}','{$C8}','{$M1}','{$M2}','{$T1}','{$T2}', '{$B1}')");
if ($user_sig) {
$attach = 1;
} else {
$attach = 0;
}
if ($AutoRegUser == 1 or !isset($AutoRegUser)) {
$result = sql_query("INSERT INTO " . $NPDS_Prefix . "users_status VALUES ('{$usr_id}','0','{$attach}','0','1','1','')");
} else {
$result = sql_query("INSERT INTO " . $NPDS_Prefix . "users_status VALUES ('{$usr_id}','0','{$attach}','0','1','0','')");
}
if ($result) {
if ($system == 1 or $memberpass) {
echo '<h2>' . translate("User") . '</h2>';
echo '<h2><i class="fa fa-user"></i> Inscription</h2>';
echo "<p class=\"lead\">" . translate("Your Password is: ") . "<strong>{$makepass}</strong></p>";
echo "<p class=\"lead\">" . translate("You can change it after you login at") . " : <a href=\"user.php?op=login&uname={$uname}&pass={$makepass}\"><strong>{$sitename}</strong></a></p>";
} else {
$message = "" . translate("Welcome to") . " {$sitename} !\n\n" . translate("You or someone else has used your email account") . " ({$email}) " . translate("to register an account at") . " {$sitename}.\n\n" . translate("The following is the member information:") . "\n" . translate("-Nickname: ") . " {$uname}\n" . translate("-Password: "******" {$makepass}\n\n";
include "signat.php";
$subject = "" . translate("User Password for") . " {$uname}";
send_email($email, $subject, $message, "", true, "html");
echo '<h2>' . translate("User") . '</h2>';
echo '<h2><i class="fa fa-user"></i> Inscription</h2>';
echo '<p class="lead text-info"><i class="fa fa-exclamation"></i> ' . translate("You are now registered. You should receive your password at the email account you provided.") . '</p>';
}
//------------------------------------------------
if (file_exists("modules/include/new_user.inc")) {
include "modules/include/new_user.inc";
global $gmt;
$time = date(translate("dateinternal"), time() + $gmt * 3600);
$message = meta_lang(AddSlashes(str_replace("\n", "<br />", $message)));
$sql = "INSERT INTO " . $NPDS_Prefix . "priv_msgs (msg_image, subject, from_userid, to_userid, msg_time, msg_text) ";
$sql .= "VALUES ('', '{$sujet}', '{$emetteur_id}', '{$usr_id}', '{$time}', '{$message}')";
sql_query($sql);
}
//------------------------------------------------
//modif debut envoyer un mel à l'admin
send_email($adminmail, "Inscription sur {$sitename}", "Infos :\n Nom : {$name}\n ID : {$uname}\n Password : {$makepass}\n Email : {$email}", false, "text");
//modif pour envoyer un mel à l'admin
}
include "footer.php";
} else {
message_error($stop, "finish");
}
}
$m->Wordwrap = 60;
$m->Subject = _ADMIN_WEBUSERS_RESETPASS_SUBJECT;
$m->Body = _ADMIN_WEBUSERS_RESETPASS_BODY1 . $new . _ADMIN_WEBUSERS_RESETPASS_BODY2;
if (!$m->Send()) {
echo $m->ErrInfo;
}
echo _ADMIN_WEBUSERS_RESETPASS_USER1 . $r[web_users_username] . _ADMIN_WEBUSERS_RESETPASS_USER2 . $new . _ADMIN_WEBUSERS_RESETPASS_USER3;
}
}
if ($contactid) {
$q = mysql_query("select * from web_users where web_users_flname LIKE {$contactid} and web_users_type='C'");
if (@(!mysql_num_rows($q))) {
echo _ADMIN_WEBUSERS_RESETPASS_NO_DATA;
} else {
$r = mysql_fetch_array($q);
$new = makepass();
mysql_query("update web_users set web_users_password = '******' where web_users_flname = {$contactid} and web_users_type='C'");
$x = explode(' ', $contactid);
$fname = $x[0];
$lname = $x[1];
$q = mysql_query("select * from studentcontact where studentcontact_fname like '{$fname}' and studentcontact_lname LIKE '{$lname}'");
$r = mysql_fetch_array($q);
$m = new PHPMailer();
$m->From = SMTP_FROM_EMAIL;
$m->Fromname = SMTP_FROM_NAME;
$m->AddAddress($r['studentcontact_email'], $r['studentcontact_fname'] . " " . $r['studentcontact_lname']);
$m->AddReplyTo(SMTP_REPLY_TO, "testing");
$m->Wordwrap = 60;
$m->Subject = _ADMIN_WEBUSERS_RESETPASS_SUBJECT;
$m->Body = _ADMIN_WEBUSERS_RESETPASS_BODY1 . $new . _ADMIN_WEBUSERS_RESETPASS_BODY2;
if (!$m->Send()) {
