| Server IP : 3.111.61.48 / Your IP : 216.73.216.67 Web Server : Apache System : Linux ip-10-0-5-176 6.8.0-1057-aws #60~22.04.1-Ubuntu SMP Wed May 27 08:16:59 UTC 2026 x86_64 User : ubuntu ( 1000) PHP Version : 8.2.31 Disable Function : exec,passthru,shell_exec,system MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : OFF | Sudo : ON | Pkexec : ON Directory : /var/www/vhost/book.gyaniguru.org/ |
Upload File : |
<?php
require_once 'includes/db.php';
session_start();
if ($_SERVER['REQUEST_METHOD'] == 'POST' && isset($_SESSION['user_id'])) {
$user_id = $_SESSION['user_id'];
$new_pass = $_POST['new_password'] ?? '';
$conf_pass = $_POST['confirm_password'] ?? '';
if (empty($new_pass) || $new_pass !== $conf_pass) {
header("Location: account.php?error=password_mismatch");
exit();
}
$hashed = password_hash($new_pass, PASSWORD_DEFAULT);
$sql = "UPDATE users SET password = '$hashed' WHERE id = $user_id";
if ($conn->query($sql)) {
header("Location: account.php?success=password_changed");
} else {
header("Location: account.php?error=update_failed");
}
exit();
} else {
header("Location: login.php");
exit();
}
?>