Gecko [ 122.154.134.11 ]

Name	Size	Permission
manual	[ DIR ]	drwxr-xr-x
index.php	498 B	-rwxr-xr-x
register.php	4.7 KB	-rwxr-xr-x
user_change_pwd.php	2.58 KB	-rwxr-xr-x

Code Editor : user_change_pwd.php

<?php
/** ensure this file is being included by a parent file */
defined( '_VALID_' ) or die( 'Direct Access to this location is not allowed.' );

if(isset($_POST['newpasswd'])){
$newpasswd = trim($_POST['newpasswd']);
$newpasswd = md5($newpasswd);
$sql = "update system_user set userpass = '$newpasswd' where person_id = '$_SESSION[login_user_id]' ";
$dbquery = mysqli_query($connect,$sql);
$sql=$sql = "select * from system_user where userpass = '$newpasswd' and person_id='$_SESSION[login_user_id]' ";
$dbquery = mysqli_query($connect,$sql);
$result = mysqli_fetch_array($dbquery);
		if($result){
		echo "<script>alert('เปลี่ยนรหัสผ่านเรียบร้อยแล้ว'); document.location.href='index.php';</script>";
		exit();
		}
		else {
		echo "<script>alert('เกิดปัญหาบางอย่าง ไม่สามารถเปลี่ยนรหัสผ่านใหม่ได้'); document.location.href='index.php';</script>";
		exit();
		}
}
?>
<br><br>
<form id="frm1" name="frm1">
<table cellpadding='5' cellspacing='5' width='350' align='center' class='row2'>
	<tr><td colspan='3' height=10></td></tr>
	<tr><td colspan='3' align=center><font size='4'><b>เปลี่ยน Password</td></tr>
	<tr><td>&nbsp;</td>
		<td align='right'><b>รหัสผ่านใหม่&nbsp;&nbsp;</td><td  align='left'><input type="password" name="newpasswd"/></td>
	</tr>
	<tr>
	<td>&nbsp;</td>
		<td align='right'><b>รหัสผ่านใหม่(อีกครั้ง)&nbsp;&nbsp;</td><td align='left'><input type="password" name="renewpasswd"/></td>
	</tr>
	<tr align="center"><td colspan="2"  align="right"><input type="button" value="ตกลง" onclick="goto_url(1)"&nbsp;&nbsp;></td><td align="left"><INPUT TYPE="button" name="back" value="ย้อนกลับ" onclick="goto_url(0)" ></td></tr>
	<tr><td colspan=3 height=10></td></tr>
</table>
</form>

</script>

${this.title}

Code Editor : user_change_pwd.php