#!/usr/bin/perl -w
use CGI;
my $id = session();
use DBI;
my $cgi= new CGI;
use strict;
my $pass = $cgi->param('password') || undef;
my $new1 = $cgi->param('newpass1') || undef;
my $new2 = $cgi->param('newpass2') || undef;
my $ip2c = $ENV{'REMOTE_ADDR'};
my $q = CGI->new;
my $s = $q->cookie('CGISESSPID') || undef;
my $session = CGI::Session->load(undef,$s,{Directory=>'/tmp/pub'});
my $user = $session->param("user");
my $records_fetch;
my $date;
my $message;
$message="Database is down for a scheduled maintenance - it should be back online soon.
\n";
my $dbh = DBI->connect("DBI:mysql:samembers:samembers.db.7054548.hostedresource.com:3306", "samembers","S3h7a5arei") || Error("$message");
$message="";
if ($ENV{'REQUEST_METHOD'} eq 'POST')
{
if(!($pass))
{
$message.="Password field is required.
\n";
}
else{}
if(!($new1))
{
$message.="New Password field is required.
\n";
}
else{}
if(!($new2))
{
$message.="Confirm Password field is required.
\n";
}
else{}
if($new1 ne $new2)
{
$message.="Confirm Password field doesn't match.
\n";
}
else{}
if($message)
{
&Error("
$message<\/div>");
exit 1;
}
$records_fetch=$dbh->prepare("select id from memb where pass=? and id=?");
$records_fetch->execute($pass,$id);
my $p = $records_fetch->fetchrow;
if($p)
{
my $sql="UPDATE memb SET pass=? WHERE id=?";
$records_fetch=$dbh->do($sql,undef,$new1,"$id");
&Error("
Updated Successfully!<\/div>");
}#close if password matches
else
{
&Error("
Please enter the correct password for verification.<\/div>");
}
}#close post
open(DATA,"templates/header-cp.html");
my @head=
;
close(DATA);
open(DATA,"templates/footer.html");
my @foot=;
close(DATA);
open(DATA,"templates/change-password.html");
my $line;
my $file;
while($line=)
{
$file.=$line;
}
close(DATA);
#$file=~s/name="password"/name="password" value="$pass"/i;
print "@head\n";
print <
EndHTML
print "$file\n";
print "@foot\n";
$dbh->disconnect;
sub Error
{
my $line;
my $file;
my ($message)=@_;
open(DATA,"templates/header-cp.html");
my @head=
;
close(DATA);
open(DATA,"templates/footer.html");
my @foot=;
close(DATA);
open(DATA,"templates/change-password.html");
while($line=)
{
$file.=$line;
}
close(DATA);
$file=~s//$message/i;
#$file=~s/name="password"/name="password" value="$pass"/i;
print "@head\n";
print <
EndHTML
print "$file\n";
print "@foot\n";
exit 1;
}
sub session
{
use CGI::Carp qw/fatalsToBrowser warningsToBrowser/;
use CGI::Session ( '-ip_match' );
my $q = CGI->new;
my $s = $q->cookie('CGISESSPID') || undef;
my $session = CGI::Session->load(undef,$s,{Directory=>'/tmp/pub'});
if($session->is_expired)
{
print $q->header(-cache_control=>"no-cache, no-store, must-revalidate",-location=>"http://www.sponsoredads.com/members/signin.cgi?action=expire");
exit 1;
}
elsif($session->is_empty)
{
print $q->header(-cache_control=>"no-cache, no-store, must-revalidate",-location=>"http://www.sponsoredads.com/members/signin.cgi?action=expire");
exit 1;
}
else
{
my $cookie = $q->cookie(-name=>"CGISESSPID",-value=>"$s",-expires=>"+15m",-domain=>"sponsoredads.com");
print $q->header(-cookie=>$cookie,-cache_control=>"no-cache, no-store, must-revalidate");
my $id = $session->param("id");
return $id;
}
}
exit 1;