function mail_password($username, $code) { global $sitename, $adminmail, $nukeurl, $user_prefix, $db, $module_name; $username = substr(htmlspecialchars(str_replace("\\'", "'", trim($username))), 0, 25); $username = rtrim($username, "\\"); $username = str_replace("'", "\\'", $username); $sql = "SELECT user_email, user_password FROM " . $user_prefix . "_users WHERE username='******'"; $result = $db->sql_query($sql); if ($db->sql_numrows($result) == 0) { include "header.php"; OpenTable(); echo "<center>" . _SORRYNOUSERINFO . "</center>"; CloseTable(); include "footer.php"; } else { $host_name = $_SERVER['REMOTE_ADDR']; $row = $db->sql_fetchrow($result); $user_email = filter($row['user_email'], "nohtml"); $user_password = $row['user_password']; $user_password = htmlspecialchars(stripslashes($user_password)); $areyou = substr($user_password, 0, 10); if ($areyou == $code) { $newpass = makepass(); $message = "" . _USERACCOUNT . " '{$username}' " . _AT . " {$sitename} " . _HASTHISEMAIL . " " . _AWEBUSERFROM . " {$host_name} " . _HASREQUESTED . "\n\n" . _YOURNEWPASSWORD . " {$newpass}\n\n " . _YOUCANCHANGE . " {$nukeurl}/modules.php?name={$module_name}\n\n" . _IFYOUDIDNOTASK . ""; $subject = "" . _USERPASSWORD4 . " {$username}"; mail($user_email, $subject, $message, "From: {$adminmail}\nX-Mailer: PHP/" . phpversion()); /* Next step: add the new password to the database */ $cryptpass = md5($newpass); $query = "UPDATE " . $user_prefix . "_users SET user_password='******' WHERE username='******'"; if (!$db->sql_query($query)) { echo "" . _UPDATEFAILED . ""; } include "header.php"; OpenTable(); echo "<center>" . _PASSWORD4 . " {$username} " . _MAILED . "<br><br>" . _GOBACK . "</center>"; CloseTable(); include "footer.php"; /* If no Code, send it */ } else { $sql = "SELECT user_email, user_password FROM " . $user_prefix . "_users WHERE username='******'"; $result = $db->sql_query($sql); if ($db->sql_numrows($result) == 0) { include "header.php"; OpenTable(); echo "<center>" . _SORRYNOUSERINFO . "</center>"; CloseTable(); include "footer.php"; } else { $host_name = $_SERVER['REMOTE_ADDR']; $row = $db->sql_fetchrow($result); $user_email = filter($row['user_email'], "nohtml"); $user_password = $row['user_password']; $areyou = substr($user_password, 0, 10); $message = "" . _USERACCOUNT . " '{$username}' " . _AT . " {$sitename} " . _HASTHISEMAIL . " " . _AWEBUSERFROM . " {$host_name} " . _CODEREQUESTED . "\n\n" . _YOURCODEIS . " {$areyou} \n\n" . _WITHTHISCODE . " {$nukeurl}/modules.php?name={$module_name}&op=pass_lost\n" . _IFYOUDIDNOTASK2 . ""; $subject = "" . _CODEFOR . " {$username}"; mail($user_email, $subject, $message, "From: {$adminmail}\nX-Mailer: PHP/" . phpversion()); include "header.php"; OpenTable(); echo "<center>" . _CODEFOR . " {$username} " . _MAILED . "<br><br>" . _GOBACK . "</center>"; CloseTable(); include "footer.php"; } } } }
function finishNewUser($uname, $name, $email, $user_avatar, $user_icq, $user_occ, $user_from, $user_intrest, $user_sig, $user_viewemail, $user_aim, $user_yim, $user_msnm, $pass, $user_lnl, $C1, $C2, $C3, $C4, $C5, $C6, $C7, $C8, $M1, $M2, $T1, $T2, $B1) { global $NPDS_Prefix; global $makepass, $system, $adminmail, $sitename, $AutoRegUser, $memberpass, $gmt; $stop = userCheck($uname, $email); $user_regdate = time() + $gmt * 3600; $stop = userCheck($uname, $email); if (!$stop) { include "header.php"; if (!$memberpass) { $makepass = makepass(); } else { $makepass = $pass; } if (!$system) { $cryptpass = crypt($makepass, $makepass); } else { $cryptpass = $makepass; } $result = sql_query("INSERT INTO " . $NPDS_Prefix . "users VALUES (NULL,'{$name}','{$uname}','{$email}','','','{$user_avatar}','{$user_regdate}','{$user_icq}','{$user_occ}','{$user_from}','{$user_intrest}','{$user_sig}','{$user_viewemail}','','{$user_aim}','{$user_yim}','{$user_msnm}','','{$cryptpass}','10','','0','0','0','','0','','','10','0','0','1','0','','','{$user_lnl}')"); list($usr_id) = sql_fetch_row(sql_query("SELECT uid FROM " . $NPDS_Prefix . "users WHERE uname='{$uname}'")); $result = sql_query("INSERT INTO " . $NPDS_Prefix . "users_extend VALUES ('{$usr_id}','{$C1}','{$C2}','{$C3}','{$C4}','{$C5}','{$C6}','{$C7}','{$C8}','{$M1}','{$M2}','{$T1}','{$T2}', '{$B1}')"); if ($user_sig) { $attach = 1; } else { $attach = 0; } if ($AutoRegUser == 1 or !isset($AutoRegUser)) { $result = sql_query("INSERT INTO " . $NPDS_Prefix . "users_status VALUES ('{$usr_id}','0','{$attach}','0','1','1','')"); } else { $result = sql_query("INSERT INTO " . $NPDS_Prefix . "users_status VALUES ('{$usr_id}','0','{$attach}','0','1','0','')"); } if ($result) { if ($system == 1 or $memberpass) { echo '<h2>' . translate("User") . '</h2>'; echo '<h2><i class="fa fa-user"></i> Inscription</h2>'; echo "<p class=\"lead\">" . translate("Your Password is: ") . "<strong>{$makepass}</strong></p>"; echo "<p class=\"lead\">" . translate("You can change it after you login at") . " : <a href=\"user.php?op=login&uname={$uname}&pass={$makepass}\"><strong>{$sitename}</strong></a></p>"; } else { $message = "" . translate("Welcome to") . " {$sitename} !\n\n" . translate("You or someone else has used your email account") . " ({$email}) " . translate("to register an account at") . " {$sitename}.\n\n" . translate("The following is the member information:") . "\n" . translate("-Nickname: ") . " {$uname}\n" . translate("-Password: "******" {$makepass}\n\n"; include "signat.php"; $subject = "" . translate("User Password for") . " {$uname}"; send_email($email, $subject, $message, "", true, "html"); echo '<h2>' . translate("User") . '</h2>'; echo '<h2><i class="fa fa-user"></i> Inscription</h2>'; echo '<p class="lead text-info"><i class="fa fa-exclamation"></i> ' . translate("You are now registered. You should receive your password at the email account you provided.") . '</p>'; } //------------------------------------------------ if (file_exists("modules/include/new_user.inc")) { include "modules/include/new_user.inc"; global $gmt; $time = date(translate("dateinternal"), time() + $gmt * 3600); $message = meta_lang(AddSlashes(str_replace("\n", "<br />", $message))); $sql = "INSERT INTO " . $NPDS_Prefix . "priv_msgs (msg_image, subject, from_userid, to_userid, msg_time, msg_text) "; $sql .= "VALUES ('', '{$sujet}', '{$emetteur_id}', '{$usr_id}', '{$time}', '{$message}')"; sql_query($sql); } //------------------------------------------------ //modif debut envoyer un mel à l'admin send_email($adminmail, "Inscription sur {$sitename}", "Infos :\n Nom : {$name}\n ID : {$uname}\n Password : {$makepass}\n Email : {$email}", false, "text"); //modif pour envoyer un mel à l'admin } include "footer.php"; } else { message_error($stop, "finish"); } }
$m->Wordwrap = 60; $m->Subject = _ADMIN_WEBUSERS_RESETPASS_SUBJECT; $m->Body = _ADMIN_WEBUSERS_RESETPASS_BODY1 . $new . _ADMIN_WEBUSERS_RESETPASS_BODY2; if (!$m->Send()) { echo $m->ErrInfo; } echo _ADMIN_WEBUSERS_RESETPASS_USER1 . $r[web_users_username] . _ADMIN_WEBUSERS_RESETPASS_USER2 . $new . _ADMIN_WEBUSERS_RESETPASS_USER3; } } if ($contactid) { $q = mysql_query("select * from web_users where web_users_flname LIKE {$contactid} and web_users_type='C'"); if (@(!mysql_num_rows($q))) { echo _ADMIN_WEBUSERS_RESETPASS_NO_DATA; } else { $r = mysql_fetch_array($q); $new = makepass(); mysql_query("update web_users set web_users_password = '******' where web_users_flname = {$contactid} and web_users_type='C'"); $x = explode(' ', $contactid); $fname = $x[0]; $lname = $x[1]; $q = mysql_query("select * from studentcontact where studentcontact_fname like '{$fname}' and studentcontact_lname LIKE '{$lname}'"); $r = mysql_fetch_array($q); $m = new PHPMailer(); $m->From = SMTP_FROM_EMAIL; $m->Fromname = SMTP_FROM_NAME; $m->AddAddress($r['studentcontact_email'], $r['studentcontact_fname'] . " " . $r['studentcontact_lname']); $m->AddReplyTo(SMTP_REPLY_TO, "testing"); $m->Wordwrap = 60; $m->Subject = _ADMIN_WEBUSERS_RESETPASS_SUBJECT; $m->Body = _ADMIN_WEBUSERS_RESETPASS_BODY1 . $new . _ADMIN_WEBUSERS_RESETPASS_BODY2; if (!$m->Send()) {