Problem with randon/md5 password

adhbvklwqdbviabjiawdnbij · August 14, 2011

I got a blank screen when use this register.php on an action:

<?php

//Start session

session_start();



//Include database connection details

require_once('../config/config.php');



//Array to store validation errors

$errmsg_arr = array();



//Validation error flag

$errflag = false;



//Connect to mysql server

$link = mysql_connect(DB_HOST, DB_USER, DB_PASSWORD);

if(!$link) {

	die('Falha ao conectar ao servidor: ' . mysql_error());

}



//Select database

$db = mysql_select_db(DB_DATABASE);

if(!$db) {

	die("Falha ao selecionar o banco de dados.");

}



//Function to sanitize values received from the form. Prevents SQL injection

function clean($str) {

	$str = @trim($str);

	if(get_magic_quotes_gpc()) {

		$str = stripslashes($str);

	}

	return mysql_real_escape_string($str);

}



//Sanitize the POST values

$name = clean($_POST['name']);

$matricula = clean($_POST['matricula']);

$email = clean($_POST['email']);

//Get randon password

$password = randomStr(6, ;



//Input Validations

if($name == '') {

	$errmsg_arr[] = 'O campo Nome nao foi preenchido.';

	$errflag = true;

}

if($matricula == '') {

	$errmsg_arr[] = 'O campo Matricula nao foi preenchido.';

	$errflag = true;

}

if($email == '') {

	$errmsg_arr[] = 'O campo Email nao foi preenchido.';

	$errflag = true;

}



//Check for duplicate email

if($email != '') {

	$qry = "SELECT * FROM members WHERE email='$email'";

	$result = mysql_query($qry);

	if($result) {

		if(mysql_num_rows($result) > 0) {

			$errmsg_arr[] = 'Esse email ja se encontra em uso.';

			$errflag = true;

		}

		@mysql_free_result($result);

	}

	else {

		die("Query failed");

	}

}



//If there are input validations, redirect back to the registration form

if($errflag) {

	$_SESSION['ERRMSG_ARR'] = $errmsg_arr;

	session_write_close();

	header("location: ../register.php");

	exit();

}



//Create INSERT query

$qry = "INSERT INTO members(name, matricula, email, passwd) VALUES('$name','$matricula','$email','".md5($password'])."')";

$result = @mysql_query($qry);



//Check whether the query was successful or not

if($result) {

	header("location: ../register_success.php");

	exit();

}else {

	die("Query failed");

}

?>

xyph · August 14, 2011

A what when? Why not try commenting out your header redirects, and replace them with a temporary message.

Sign In

Problem with randon/md5 password

Recommended Posts

adhbvklwqdbviabjiawdnbij

Link to comment

Share on other sites

xyph

Link to comment

Share on other sites

Join the conversation

Browse

Activity

Important Information