<?php
$captcha = '/cap/index.php?'.session_name().'='. session_id().'';
function generator($case1, $case2, $case3, $case4, $num1) {
$password = "";
$small="abcdefghijklmnopqrstuvwxyz";
$large="ABCDEFGHIJKLMNOPQRSTUVWXYZ";
$numbers="1234567890";
$symbols="~!#$%^&*()_+-=,./<>?|:;@";
mt_srand((double)microtime()*1000000);
for ($i=0; $i<$num1; $i++) {
$type = mt_rand(1,4);
switch ($type) {
case 1:
if ($case1 == "on") { $password .= $large[mt_rand(0,25)]; } else { $i--; }
break;
case 2:
if ($case2 == "on") { $password .= $small[mt_rand(0,25)]; } else { $i--; }
break;
case 3:
if ($case3 == "on") { $password .= $numbers[mt_rand(0,9)]; } else { $i--; }
break;
case 4:
if ($case4 == "on") { $password .= $symbols[mt_rand(0,24)]; } else { $i--; }
break;
}
}
return $password;
}
if($_GET['action'] == "send" AND isset($_POST['email']) AND isset($_POST['ulogin'])) {
$email = htmlspecialchars($_POST['email'], ENT_QUOTES);
$ulogin = htmlspecialchars($_POST['ulogin'], ENT_QUOTES);
$code = htmlspecialchars(str_replace("'","",$_POST["code"]), ENT_QUOTES);
$cap = (isset($_SESSION['captcha_keystring']) && strtolower($_SESSION['captcha_keystring']) == strtolower($_POST['keystring']));
if(!$cap) {
print "<p class=\"er\">Вы ввели неправельно каптчу</p>";
} elseif(preg_match("/^[a-z0-9_.-]{1,20}@(([a-z0-9-]+\.)+(com|net|org|mil|edu|gov|arpa|info|biz|[a-z]{2})|[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3})$/is", $email)) {
$sql = 'SELECT login, pass, status FROM users WHERE mail = "'.$email.'" AND login = "'.$ulogin.'" LIMIT 1';
$rs = mysql_query($sql);
$a = mysql_fetch_array($rs);
$s = $a['status'];
if (!$a) {
print '<p class="er">'.$lng['er_no_mail_bd'].'!</p>';
} else {
$case1 = on;
$case2 = on;
$case3 = on;
$case4 = on;
$num1 = 8;
$num2 = 1;
$newpass = generator($case1, $case2, $case3, $case4, $num1);
$text = "<p>Здравствуйте <b>".$a['login']."</b>!</p><p>По Вашей просьбе высылаем новый пароль к аккаунту ".$a['login']."<br /><p>Новый пароль: <b>".$newpass."</b></p>С Уважением, администрация проекта ".$cfgURL;
$subject = "Новый пароль к аккаунту ".$a['login'];
$headers = "From: ".$adminmail."\n";
$headers .= "Reply-to: ".$adminmail."\n";
$headers .= "X-Sender: < http://".$cfgURL." >\n";
$headers .= "Content-Type: text/html; charset=utf-8\n";
mysql_query("UPDATE users SET pass = '".as_md5($key, $newpass)."' WHERE login = '".$a['login']."' LIMIT 1");
if (mail($email,$subject,$text,$headers)) {
print '<p class="erok">'.$lng['er_new_pass_send'].'!</p>';
} else {
print '<p class="er">'.$lng['er_mail_server'].'!</p>';
}
}
} else {
print '<p class="er">'.$lng['er_mail'].'!</p>';
}
}
?>
<table>
<tr>
<td width="620" valign="top" height="573">
<table align="left" valign="top" width="600" border="0" cellpadding="2" cellspacing="14" class="front-signup" style="border-collapse: separate;">
<form action="?action=send" method="post">
<tr>
<td align="right">Login: </td>
<td><input style="width: 248px;" type="text" name="ulogin" size="30" maxlength="30" /></td>
</tr>
<tr>
<td colspan="2"><hr/>
</td>
</tr>
<tr>
<td align="right">E-mail: </td>
<td><input style="width: 248px;" type="text" name="email" size="45" maxlength="30" /></td>
</tr>
<tr>
<td colspan="2"><hr/>
</td>
</tr>
<tr>
<td align="right">Введите текст с картинки:</td>
<td align="left">
<input type="text" size="6" maxlength="6" name="keystring">
<img id="myimage" src='<?php print $captcha; ?>' />
<a href="#" onclick="document.getElementById('myimage').src='<?php print $captcha; ?>'+Math.random(); return false;"> <img id="myimage" src='/images/refresh.png' width="25"/></a>
</td>
</tr>
<tr>
<td colspan="2">
<div style="margin-top: 15px; margin-left: 40%;"><input id="prb-distanse" class="prb-mbut" type='submit' name='submit' value='<?php print $lng['send']; ?>' /></div>
</td>
</tr>
</table>
</form>
</td>
<td>
<table>
<tr>
<td>
<div class="sidebar" style="text-align:left; height: 573px;">
<?php
print $body;
?>
</div>
</td>
</tr>
</table>
</td>
</tr>
</table>