<!--#include file= "setup.asp"-->
<!--#include file= "check.asp"-->
<!--#include file= ". /inc/md5.asp "-->
<%
'=====================================================================
' Software name: New Cloud Website Management system
' Current version: Newcloud Site Management System version 2.1
' File name: admin_password.asp
' Update Date: 2004-12-20
' Official website: New Cloud Network (www.newasp.net www.newasp.cn) qq:94022511
'=====================================================================
' Copyright 2002-2005 newasp.net-all Rights Reserved.
' Newasp is a trademark of newasp.net
'=====================================================================
Dim ID
Response.Write "<script language=" "JavaScript" ">" & vbCrLf
Response.Write "<!--" & VbCrLf
Response.Write "Function Checkform ()" & VbCrLf
Response.Write "{" & VbCrLf
Response.Write "if (document.myform.password.value.length = 0)" & vbCrLf
Response.Write "{" & VbCrLf
Response.Write Alert ("Please enter your original password!"); "& VbCrLf
Response.Write "Document.myform.password.focus ();" & VbCrLf
Response.Write "return false;" & VbCrLf
Response.Write "}" & VbCrLf
Response.Write "if (document.myform.password1.value.length = 0)" & vbCrLf
Response.Write "{" & VbCrLf
Response.Write Alert ("Please enter your new password!"); "& VbCrLf
Response.Write "Document.myform.password1.focus ();" & VbCrLf
Response.Write "return false;" & VbCrLf
Response.Write "}" & VbCrLf
Response.Write "if (document.myform.password2.value.length = 0)" & vbCrLf
Response.Write "{" & VbCrLf
Response.Write "Alert (" "Please enter your confirmation password" "); & VbCrLf
Response.Write "Document.myform.password2.focus ();" & VbCrLf
Response.Write "return false;" & VbCrLf
Response.Write "}" & VbCrLf
Response.Write "return true;" & VbCrLf
Response.Write "}" & VbCrLf
Response.Write "//-->"
Response.Write "</script>" & VbCrLf
Admin_header
Dim Action
Action = LCase (Request ("action")
If not Chkadmin ("ChangePassword") Then
Server.Transfer ("showerr.asp")
Response.End
End If
Set Rs = Server.CreateObject ("Adodb.recordset")
Select Case Action
Case "Save"
Call Svaeadmin
Case Else
Call Passmain
End Select
If Founderr = True Then
Returnerror (errmsg)
End If
Admin_footer
Saveloginfo (AdminName)
Closeconn
Private Sub Passmain ()
Response.Write "<table border=" "0" "align=" "Center" "Cellpadding=" "2" "cellspacing=" "1" "class=" "Tableborder" " > "& vbCrLf
Response.Write "<tr>" & VbCrLf
Response.Write "<th colspan=" "2" "> Admin name and Password modification </th></tr>" & vbCrLf
Response.Write "<form method=post name=" "MyForm" "action=" "Admin_password.asp?action=save" "onSubmit=" "return" Checkform (); "" > "& vbCrLf
Response.Write "<tr>" & VbCrLf
Response.Write "<td width=" "25%" "align=" "Right" "nowrap class=" "Tablerow2" "> Administrator name:</td>" & VbCrLf
Response.Write "<td class=" "Tablerow1" "width=" "75%" "> <input" type=text size=25 name=username value= "" "
Response.Write Session ("AdminName")
Response.Write "" "> * <font color= #FF0000 > Do not modify can be left blank </font></td>" & vbCrLf
Response.Write "</tr>" & VbCrLf
Response.Write "<tr>" & VbCrLf
Response.Write "<td align=" "Right" "nowrap class=" "Tablerow2" "> Original password:</td>" & vbCrLf
Response.Write "<td class=" "Tablerow1" "> <input type=password size=25 name=password></td>" & VbCrLf
Response.Write "</tr>" & VbCrLf
Response.Write "<tr>" & VbCrLf
Response.Write "<td align=" "Right" "nowrap class=" "Tablerow2" "> New Password:</td>" & vbCrLf
Response.Write "<td class=" "Tablerow1" "> <input type=password size=25 name=password1></td>" & VbCrLf
Response.Write "</tr>" & VbCrLf
Response.Write "<tr>" & VbCrLf
Response.Write "<td align=" "Right" "nowrap class=" "Tablerow2" "> Confirm New Password:</td>" & vbCrLf
Response.Write "<td class=" "Tablerow1" "> <input type=password size=25 name=password2></td>" & VbCrLf
Response.Write "</tr>" & VbCrLf
Response.Write "<tr>" & VbCrLf
Response.Write "<TD align=" "Center" "Colspan=" "2" "class=" "Tablerow1" ">" & vbCrLf
Response.Write "<input Type=hidden name=id value=" ""
Response.Write Session ("Adminid")
Response.Write "" > "& vbCrLf
Response.Write "<input type=" "Submit" "Name=" "Submit" "Class=button value=" "Confirm Modification" ">" & vbCrLf
Response.Write "</td>" & VbCrLf
Response.Write "</tr></form>" & VbCrLf
Response.Write "</table><BR>" & VbCrLf
End Sub
Private Sub svaeadmin ()
dim password
set Rs = Server.CreateObject ("ADODB. RecordSet ")
password = MD5 (Request.Form (" password "))
if newasp.checkpost = False Then
& nbsp ErrMsg = errmsg + "<li> The data you submitted is not valid, please do not submit registration from outside." </li>
founderr = True
end If
if InStr (Request ("username"), "=") > 0 Or InStr (Request ("username"), "%") > 0 Or InStr (Request ("username"), Chr ()) > 0 Or InStr (Request ("username"), "?") > 0 Or InStr (Request ("username"), "&") > 0 or INSTR (Request ("username"), ";") > 0 Or InStr (Request ("username"), ",") > 0 or INSTR (Request ("username"), "'") > 0 Or InStr (Request ("username"), ",") > 0 Or InStr (Request ("username"), CHR) > 0 or INSTR (Request ("username"), CHR (9)) > 0 or INSTR (Request ("username"), "