$v) { if (is_array($v)) { $array[$k] = add_magic_quotes($v); } else { $array[$k] = addslashes($v); } } return $array; } } if (!get_magic_quotes_gpc()) { $HTTP_GET_VARS = add_magic_quotes($HTTP_GET_VARS); $HTTP_POST_VARS = add_magic_quotes($HTTP_POST_VARS); $HTTP_COOKIE_VARS = add_magic_quotes($HTTP_COOKIE_VARS); } $wpvarstoreset = array('action','mode','error','text','popupurl','popuptitle'); for ($i = 0; $i < count($wpvarstoreset); $i = $i + 1) { $wpvar = $wpvarstoreset[$i]; if (!isset($$wpvar)) { if (empty($HTTP_POST_VARS["$wpvar"])) { if (empty($HTTP_GET_VARS["$wpvar"])) { $$wpvar = ''; } else { $$wpvar = $HTTP_GET_VARS["$wpvar"]; } } else { $$wpvar = $HTTP_POST_VARS["$wpvar"]; } } } switch($action) { case 'logout': setcookie('wordpressuser_'.$cookiehash); setcookie('wordpresspass_'.$cookiehash); header('Expires: Wed, 11 Jan 1984 05:00:00 GMT'); header('Last-Modified: ' . gmdate('D, d M Y H:i:s') . ' GMT'); header('Cache-Control: no-cache, must-revalidate'); header('Pragma: no-cache'); if ($is_IIS) { header('Refresh: 0;url=wp-login.php'); } else { header('Location: wp-login.php'); } exit(); break; case 'login': if(!empty($HTTP_POST_VARS)) { $log = $HTTP_POST_VARS["log"]; $pwd = $HTTP_POST_VARS["pwd"]; $redirect_to = $HTTP_POST_VARS["redirect_to"]; } $user = get_userdatabylogin($log); if (0 == $user->user_level) { $redirect_to = $site . '/wp-admin/profile.php'; } function login() { global $wpdb, $log, $pwd, $error, $user_ID; global $tableusers, $pass_is_md5; $user_login = &$log; $password = &$pwd; if (!$user_login) { $error="ERROR: the login field is empty"; return false; } if (!$password) { $error="ERROR: the password field is empty"; return false; } if ('md5:' == substr($password, 0, 4)) { $pass_is_md5 = 1; $password = substr($password, 4, strlen($password)); $query = "SELECT ID, user_login, user_pass FROM $tableusers WHERE user_login = '$user_login' AND MD5(user_pass) = '$password'"; } else { $pass_is_md5 = 0; $query = "SELECT ID, user_login, user_pass FROM $tableusers WHERE user_login = '$user_login' AND user_pass = '$password'"; } $login = $wpdb->get_row($query); if (!$login) { $error = 'ERROR: wrong login or password'; $pwd = ''; return false; } else { $user_ID = $login->ID; if (($pass_is_md5 == 0 && $login->user_login == $user_login && $login->user_pass == $password) || ($pass_is_md5 == 1 && $login->user_login == $user_login && md5($login->user_pass) == $password)) { return true; } else { $error = 'ERROR: wrong login or password'; $pwd = ''; return false; } } } if (!login()) { header('Expires: Wed, 11 Jan 1984 05:00:00 GMT'); header('Last-Modified: ' . gmdate('D, d M Y H:i:s') . ' GMT'); header('Cache-Control: no-cache, must-revalidate'); header('Pragma: no-cache'); if ($is_IIS) { header('Refresh: 0;url=wp-login.php'); } else { header('Location: wp-login.php'); } exit(); } else { $user_login = $log; $user_pass = $pwd; setcookie('wordpressuser_'.$cookiehash, $user_login, time()+31536000); if ($pass_is_md5) { setcookie('wordpresspass_'.$cookiehash, $user_pass, time()+31536000); } else { setcookie('wordpresspass_'.$cookiehash, md5($user_pass), time()+31536000); } if (empty($HTTP_COOKIE_VARS['wordpressblogid_'.$cookiehash])) { setcookie('wordpressblogid_'.$cookiehash, 1,time()+31536000); } header('Expires: Wed, 11 Jan 1984 05:00:00 GMT'); header('Last-Modified: ' . gmdate('D, d M Y H:i:s') . ' GMT'); header('Cache-Control: no-cache, must-revalidate'); header('Pragma: no-cache'); switch($mode) { case 'bookmarklet': $location = "wp-admin/bookmarklet.php?text=$text&popupurl=$popupurl&popuptitle=$popuptitle"; break; case 'sidebar': $location = "wp-admin/sidebar.php?text=$text&popupurl=$popupurl&popuptitle=$popuptitle"; break; case 'profile': $location = "wp-admin/profile.php?text=$text&popupurl=$popupurl&popuptitle=$popuptitle"; break; default: $location = "$redirect_to"; break; } if ($is_IIS) { header("Refresh: 0;url=$location"); } else { header("Location: $location"); } } break; case 'lostpassword': ?>
Type your login here and click OK. You will receive an email with your password.
$errorThe email could not be sent.
\n";
echo "Possible reason: your host may have disabled the mail() function...
The email was sent successfully to $user_login's email address.
Click here to login!