$row['opt_pm_popup0'] = 'checked'; } $row['avatarbild'] = file_exists($row['avatar']) ? '<img src="' . $row['avatar'] . '" alt=""><br />' : ''; $row['Fabreite'] = $allgAr['Fabreite']; $row['Fahohe'] = $allgAr['Fahohe']; $row['Fasize'] = $allgAr['Fasize']; $row['forum_max_sig'] = $allgAr['forum_max_sig']; $row['uid'] = $_SESSION['authid']; $row['forum_usergallery'] = $allgAr['forum_usergallery']; $row['antispam'] = get_antispam('user_profile_edit', 0, true); $tpl->set_ar_out($row, 0); if ($allgAr['forum_avatar_upload']) { $tpl->out(1); } $tpl->set_ar_out($row, 2); profilefields_change($_SESSION['authid']); $tpl->out(3); } else { $tpl = new tpl('user/login.htm'); $tpl->set_out('WDLINK', 'index.php', 0); } } elseif ($csrfCheck) { # submit # change poassword if (!empty($_POST['np1']) and !empty($_POST['np2']) and !empty($_POST['op'])) { if ($_POST['np1'] == $_POST['np2']) { $akpw = db_result(db_query("SELECT pass FROM prefix_user WHERE id = " . $_SESSION['authid']), 0); if (user_pw_check($_POST['op'], $akpw)) { $newpw = user_pw_crypt($_POST['np1']); db_query("UPDATE prefix_user SET pass = '******' WHERE id = " . $_SESSION['authid']); user_set_cookie($_SESSION['authid'], $newpw);
} if ($row['opt_pm_popup'] == 1) { $row['opt_pm_popup1'] = 'checked'; $row['opt_pm_popup0'] = ''; } else { $row['opt_pm_popup1'] = ''; $row['opt_pm_popup0'] = 'checked'; } if (@file_exists($row['avatar'])) { $row['avatar'] = '<img src="' . $row['avatar'] . '" border="0" /><br />'; } else { $row['avatar'] = ''; } $row['antispam'] = get_antispam('adminuser', 0, true); $tpl->set_ar_out($row, 0); profilefields_change($row['id']); $tpl->out(1); } $design->footer(); break; // details des users aendern // details des users aendern case 2: $design = new design('Admins Area', 'Admins Area', 2); $design->header(); $changeok = true; $uid = escape($_POST['uID'], 'integer'); $altes_recht = db_result(db_query("SELECT recht FROM prefix_user WHERE id = " . $uid), 0); $neues_recht = escape($_POST['urecht'], 'integer'); if (($neues_recht <= $_SESSION['authright'] or $altes_recht <= $_SESSION['authright']) and $_SESSION['authid'] > 1) { $changeok = false;