registration code problem
Posted: Mon Dec 16, 2013 12:18 pm
hi i have problems whit my script i try to encryp md5 salt var(32) but i try and try and i cant
here is my code is some one can fix my code thanks
here is my code is some one can fix my code thanks
Code: Select all
<?php
$dbcon = @mysql_connect($dbhost, $dbuser, $dbpass);
if (!$dbcon)
{
return show_error(mysql_error());
}
$dba = @mysql_select_db($dbaccs, $dbcon);
if (!$dba)
{
return show_error(mysql_error());
}
$ip = $_SERVER['REMOTE_ADDR'];
if($multi_ip != 1) {
$query = @mysql_query("SELECT * FROM account_data WHERE lastip = '$ip'") or die(mysql_error());
if(mysql_num_rows($query) != 0) {
return locked_error("You have already used this IP before to register an account.");
}
}
echo '<div id="acc">
<h2 align="center">Create an Account</h2><br /><form method="post">Account Name<br /><input type="text" name="accname" /><br /><br />Account Password<br /><input type="password" name="pword" /><br /><br />Retype your Password<br /><input type="password" name="pwordtwo" /><br /><br />E-mail Address (Use a valid E-mail)<br /><input type="text" name="accmail" /><br /><br /><input type="submit" value="" name="submit" /></form>
</div>';
if(isset($_POST['submit'])) {
if(empty($_POST['accname']) || empty($_POST['pword']) || empty($_POST['pwordtwo']) || empty($_POST['accmail']))
return show_error("Some fields were empty, please fill in all fields.");
if($_POST['pwordtwo'] != $_POST['pword']) return show_error("Your passwords did not match.");
if(!is_valid_email($_POST['accmail'])) return show_error("You must use a valid email");
$query1 = @mysql_query("SELECT * FROM account_data WHERE username = '$_POST[accname]'") or die(mysql_error());
if(mysql_num_rows($query1) != 0) return show_error("Username already exists in our database.");
$query2 = @mysql_query("SELECT * FROM account_data WHERE email = '$_POST[accmail]'") or die(mysql_error());
if(mysql_num_rows($query2) != 0) return show_error("E-mail already exists in our database.");
$query3 = mysql_query("INSERT INTO account_data SET username = '$_POST[accname]', password = '$_POST[pword]', isgm = '0', regtime = '385086', email = '$_POST[accmail]', isactive = '1'") or die(mysql_error());
if (mysql_affected_rows($dbcon) <= 0) return show_error("Something went wrong, please try again. Account was not created!");
echo '<div class="success"><span style="padding-left:35px;">Account successfully created!</span> <div class="s-img"></div></div><br />';
}
?>