function update_for_user($user_id) { $sql = "SELECT `user_id`,`password` FROM `users` WHERE `user_id`='" . $user_id . "' "; $result = mysql_query($sql); $row = mysql_fetch_array($result); if ($row) { $oldpw = $row['password']; if (!isOldPW($oldpw)) { return False; } $newpw = pwGen($row['password'], True); $sql = "UPDATE `users` set `password`='{$newpw}' where `user_id`='{$user_id}' LIMIT 1"; mysql_query($sql); return True; } return False; }
$len = strlen($_POST['school']); if ($len > 100) { $err_str = $err_str . "School Name Too Long!"; $err_cnt++; } $len = strlen($_POST['email']); if ($len > 100) { $err_str = $err_str . "Email Too Long!"; $err_cnt++; } if ($err_cnt > 0) { print "<script language='javascript'>\n"; echo "alert('"; echo $err_str; print "');\n history.go(-1);\n</script>"; exit(0); } if (strlen($_POST['npassword']) == 0) { $password = pwGen($_POST['opassword']); } else { $password = pwGen($_POST['npassword']); } $nick = mysqli_real_escape_string($mysqli, htmlentities($nick, ENT_QUOTES, "UTF-8")); $school = mysqli_real_escape_string($mysqli, htmlentities($school, ENT_QUOTES, "UTF-8")); $email = mysqli_real_escape_string($mysqli, htmlentities($email, ENT_QUOTES, "UTF-8")); $sql = "UPDATE `users` SET" . "`password`='" . $password . "'," . "`nick`='" . $nick . "'," . "`school`='" . $school . "'," . "`email`='" . $email . "' " . "WHERE `user_id`='" . mysqli_real_escape_string($mysqli, $user_id) . "'"; //echo $sql; //exit(0); mysqli_query($mysqli, $sql); // or die("Insert Error!\n"); header("Location: ./");
$teamnumber = intval($_POST['teamnumber']); $pieces = explode("\n", trim($_POST['ulist'])); if ($teamnumber > 0) { echo "<table border=1>"; echo "<tr><td colspan=3>Copy these accounts to distribute</td></tr>"; echo "<tr><td>team_name<td>login_id</td><td>password</td></tr>"; for ($i = 1; $i <= $teamnumber; $i++) { $user_id = $prefix . ($i < 10 ? '0' . $i : $i); $password = strtoupper(substr(MD5($user_id . rand(0, 9999999)), 0, 10)); if (isset($pieces[$i - 1])) { $nick = $pieces[$i - 1]; } else { $nick = "your_own_nick"; } echo "<tr><td>{$nick}<td>{$user_id}</td><td>{$password}</td></tr>"; $password = pwGen($password); $email = "your_own_email@internet"; $school = "your_own_school"; $sql = "INSERT INTO `users`(" . "`user_id`,`email`,`ip`,`accesstime`,`password`,`reg_time`,`nick`,`school`)" . "VALUES('" . $user_id . "','" . $email . "','" . $_SERVER['REMOTE_ADDR'] . "',NOW(),'" . $password . "',NOW(),'" . $nick . "','" . $school . "')on DUPLICATE KEY UPDATE `email`='" . $email . "',`ip`='" . $_SERVER['REMOTE_ADDR'] . "',`accesstime`=NOW(),`password`='" . $password . "',`reg_time`=now(),nick='" . $nick . "',`school`='" . $school . "'"; mysqli_query($mysqli, $sql) or die(mysql_error()); } echo "</table>"; } } ?> <b>TeamGenerator:</b> <form action='team_generate.php' method=post> Prefix:<input type='test' name='prefix' value='team'> Generate<input type=input name='teamnumber' value=50>Teams. <input type=submit value=Generate><br>
<?php if (isset($_POST['do'])) { require "../include/my_func.inc.php"; require "../include/db_info.inc.php"; for ($i = $_POST['user_id']; $i <= $_POST['fin_user_id']; $i++) { $user_id = "team" . $i; $length = $_POST['length']; $passwd = $passwd_bak = create_password($length); if (get_magic_quotes_gpc()) { $user_id = stripslashes($user_id); $passwd = stripslashes($passwd); } $user_id = mysql_real_escape_string($user_id); $passwd = pwGen($passwd); $sql = "update `users` set `password`='{$passwd}' where `user_id`='{$user_id}' and user_id not in( select user_id from privilege where rightstr='administrator') "; mysql_query($sql); $data[$i][0] = $user_id; $data[$i][1] = $passwd_bak; $data[$i][2] = $_POST['addin']; } $title = array('报名号', '密码', '注释'); exportexcel($data, $title, $_POST['xls_name']); }
<?php require_once './include/db_info.inc.php'; require_once './include/setlang.php'; $view_title = "Welcome To Online Judge"; require_once "./include/const.inc.php"; require_once "./include/my_func.inc.php"; $lost_user_id = $_POST['user_id']; $lost_key = $_POST['lost_key']; $vcode = trim($_POST['vcode']); if ($lost_user_id == $_SESSION['lost_user_id'] && ($vcode != $_SESSION["vcode"] || $vcode == "" || $vcode == null)) { echo "<script language='javascript'>\n"; echo "alert('Verify Code Wrong!');\n"; echo "history.go(-1);\n"; echo "</script>"; exit(0); } if (get_magic_quotes_gpc()) { $lost_user_id = stripslashes($lost_user_id); $lost_key = stripslashes($lost_key); } $sql = " update `users` set password='******'WHERE `user_id`='" . mysql_real_escape_string($lost_user_id) . "'"; if ($_SESSION['lost_user_id'] == $lost_user_id && $_SESSION['lost_key'] == $lost_key) { $result = mysql_query($sql); $view_errors = "Password Reseted to the key you've just inputed.Click <a href=index.php>Here</a> to login!"; } else { $view_errors = "Password Reset Fail"; } require "template/" . $OJ_TEMPLATE . "/error.php"; /////////////////////////Template /////////////////////////Common foot