Show sourcecode
The following files exists in this folder. Click to view.
bacon-egg-pizza.php
cquiz.php
create-account.php
create-account111.php
create-quiz.php
create-quiz2.php
createaccount.php
delete-quiz.php
drop-rps-tables.php
legacy-code-rps.php
legacy-index.php
login.php
logincheck.php
newpassword-verify.php
newpassword.php
potential-code.txt
quiz-db-init.php
quizhub.php
quizhub2.php
results.php
rpsaccount-ajax-user-search.php
rpsaccount.php
rpsbetting-ajax-match-finder.php
rpsbetting.php
rpsbettingleaderboard.php
rpschangepassword.php
rpschangepassword.txt
rpsgame-ajax.php
rpsgame.php
rpsgameresults.php
rpshostnewgame.php
rpshub.php
rpsleaderboard.php
rpslib.php
rpslogin.php
rpsmaininclude.php
rpsproject/
rpsusersearch.php
table-init.php
verification.php
newpassword-verify.php
36 lines UTF-8 Windows (CRLF)
<?php
require("../incl/dbconnection.php");
$name =$_GET['username'];
$key = $_GET['key'];
if(isset($_POST['pass'])){
$sql = "SELECT * FROM forgotpasskeytable WHERE username=?";
$stmt = $dbconn -> prepare($sql);
$stmt -> execute([$name]);
while($res = $stmt->fetch(PDO::FETCH_ASSOC)){
if ($res['emailkey']==$key){
$sql = "UPDATE rpsusers SET pass=? WHERE username =?";
$stmt = $dbconn -> prepare($sql);
$data = [password_hash($_POST['pass'], PASSWORD_DEFAULT), $_GET['username']];
$stmt -> execute($data);
$sql = "DELETE FROM forgotpasskeytable WHERE username=?";
$stmt = $dbconn -> prepare($sql);
$stmt -> execute([$name]);
echo 'password changed<br><a href="https://labb.vgy.se/~leown/webbsrvprg/projects/rpslogin.php">login</a>';
header('Location:rpslogin.php');
}
else{
echo "error, invalid key. please try again";
}
}
}
?>
<html>
<h1>bestäm nytt lösenord</h1>
<form action="" method="POST">
Nytt lösenord: <input type="text" name="pass"><br>
<input type="submit">
</form>
</html>