www.gusucode.com > UCMS PHP通用建站系统 v1.3.4PHP源码程序 > UCMS PHP通用建站系统 v1.3.4/ucms_v1.3.4/ucms_v1.3.4/ucms/user/mypost.php
<?php if (!defined('admin')) {exit();} if(!power('b',2)) { adminmsg('','无权限',3); } checktoken(); $nickname=dbstr(trim(htmlspecialchars($_POST['nickname']))); $psd=trim($_POST['psd']); if(strlen($psd)>0) { $psd1=trim($_POST['psd1']); if($psd<>$psd1) { adminmsg('','两次输入密码不一致',3); } } $thisname=getadminname(); if(isset($_SERVER['HTTP_REFERER'])) { if(stripos($_SERVER['HTTP_REFERER'],$_SERVER['HTTP_HOST'])===false) { die('error referer'); } if(stripos($_SERVER['HTTP_REFERER'],'?do=user_my')===false) { die('error referer'); } } if($psd=='') { $query = $GLOBALS['db'] -> query("UPDATE ".tableex('admin')." SET nickname='$nickname' WHERE username='$thisname'"); if($query) { $msg='修改成功'; }else { $msg='修改失败'; } }else { $psd=password_md5($psd); $query = $GLOBALS['db'] -> query("UPDATE ".tableex('admin')." SET nickname='$nickname',psd='$psd' WHERE username='$thisname'"); if($query) { $msg='修改成功'; setadminpsd($psd); }else { $msg='修改失败'; } } adminmsg('?do=user_my',$msg,3); ?>