getpwd3.php

希望这个对大家有用

<?php require_once('Connections/member.php'); ?>
<?php
if (!function_exists("GetSQLValueString")) {
function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "") 
{
  $theValue = get_magic_quotes_gpc() ? stripslashes($theValue) : $theValue;

  $theValue = function_exists("mysql_real_escape_string") ? mysql_real_escape_string($theValue) : mysql_escape_string($theValue);

  switch ($theType) {
    case "text":
      $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
      break;    
    case "long":
    case "int":
      $theValue = ($theValue != "") ? intval($theValue) : "NULL";
      break;
    case "double":
      $theValue = ($theValue != "") ? "'" . doubleval($theValue) . "'" : "NULL";
      break;
    case "date":
      $theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
      break;
    case "defined":
      $theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;
      break;
  }
  return $theValue;
}
}

$colname1_rsMember = "-1";
if (isset($_POST['hidUsername'])) {
  $colname1_rsMember = (get_magic_quotes_gpc()) ? $_POST['hidUsername'] : addslashes($_POST['hidUsername']);
}
$colname2_rsMember = "-1";
if (isset($_POST["txtAnswer"])) {
  $colname2_rsMember = (get_magic_quotes_gpc()) ? $_POST["txtAnswer"] : addslashes($_POST["txtAnswer"]);
}
mysql_select_db($database_member, $member);
$query_rsMember = sprintf("SELECT username, password, answer, email FROM members WHERE username = %s AND answer=%s", GetSQLValueString($colname1_rsMember, "text"),GetSQLValueString($colname2_rsMember, "text"));
$rsMember = mysql_query($query_rsMember, $member) or die(mysql_error());
$row_rsMember = mysql_fetch_assoc($rsMember);
$totalRows_rsMember = mysql_num_rows($rsMember);
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312" />
<title>选择取回密码的方式</title>
<link href="style/style.css" rel="stylesheet" type="text/css" />
</head>

<body>
<?php include( "menu.php" ); ?>
<?php
  if ($totalRows_rsMember > 0) {
    $_SESSION["username"] = $row_rsMember["username"];
    $_SESSION["password"] = $row_rsMember["password"];
    $_SESSION["email"] = $row_rsMember["email"];	
  } elseif ( $totalRows_rsMember == 0 ) {
  header ( "Location: message.php?error=4" );
  exit;
}  
?>
<form id="form1" name="form1" method="post" action="getpwd4.php">
    <table width="300" border="1" align="center" rules="none">
      <tr>
        <th bgcolor="#0066CC" class="title" scope="col">第三步：选择取回密码的方式</th>
      </tr>
      <tr>
        <td height="32" align="center"><input name="radMode" type="radio" value="web" checked="checked" />
          通过网页查看
          <input type="radio" name="radMode" value="email" />
          通过邮件收取</td>
      </tr>
      <tr>
        <td height="32" align="center" valign="middle">
		<input type="submit" name="btnComplete" value="完成" /></td>
      </tr>
    </table>
  </form>
 </body>
</html>
<?php
mysql_free_result($rsMember);
?>