Mirror/Gazelle
1
0
Fork 0
mirror of https://github.com/WhatCD/Gazelle.git synced 2024-12-13 10:56:26 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
5e62b46697
Gazelle/sections/userhistory/password_history.php
What.CD fcdcc2631a Loophole in ip histories cleared up 
Loophole in all histories cleared up

Fixing forum mod issues
2011-06-23 08:00:06 +00:00

47 lines
1.5 KiB
PHP
Raw Blame History

<?
/************************************************************************
||------------|| Password reset history page ||------------------------||
This page lists password reset IP and Times a user has made on the site.
It gets called if $_GET['action'] == 'password'.
It also requires $_GET['userid'] in order to get the data for the correct
user.
************************************************************************/
$UserID = $_GET['userid'];
if (!is_number($UserID)) { error(404); }
$DB->query("SELECT um.Username, p.Level AS Class FROM users_main AS um LEFT JOIN permissions AS p ON p.ID=um.PermissionID WHERE um.ID = ".$UserID);
list($Username, $Class) = $DB->next_record();
if(!check_perms('users_view_keys', $Class)) {
error(403);
}
show_header("Password reset history for $Username");
$DB->query("SELECT
ChangeTime,
ChangerIP
FROM users_history_passwords
WHERE UserID=$UserID
ORDER BY ChangeTime DESC");
?>
<h2>Password reset history for <a href="/user.php?id=<?=$UserID?>"><?=$Username?></a></h2>
<table width="100%">
<tr class="colhead">
<td>Changed</td>
<td>IP [<a href="/userhistory.php?action=ips&userid=<?=$UserID?>">H</a>]</td>
</tr>
<? while(list($ChangeTime, $ChangerIP) = $DB->next_record()){ ?>
<tr class="rowa">
<td><?=time_diff($ChangeTime)?></td>
<td><?=display_str($ChangerIP)?> [<a href="/user.php?action=search&ip_history=on&ip=<?=display_str($ChangerIP)?>" title="Search">S</a>]<br /><?=get_host($ChangerIP)?></td>
</tr>
<? } ?>
</table>
<? show_footer(); ?>
Reference in New Issue View Git Blame Copy Permalink