Forgot Password Script Issue

cool-palace-ceo

Hello,

I have the following code in my script for retriving lost usernames and passwords. It all seems to work well but it does not find email addresses that are in the database?!? Can someone help resolve this issue?

if(($emailaddr == "") || (empty($emailaddr))) {
echo "You Must Supply A Valid Email Address";
} else {
$check_address_info = "SELECT FROM user WHERE useremail = '$emailaddr'";
$check_address = mysql_query("$check_address_info");
if(!$check_address) {
echo "Could Not Locate $emailaddr In Our System";
} else {
$get_info_info = "SELECT userid, userpassword FROM user WHERE useremail = '$emailaddr'";
$get_info = mysql_query("$get_info_info");
if(!$get_info) {
error_message("Error Getting Data");
} else {
mail("$emailaddr", "Your Cool-Palace Login", "Your Cp Login Info Is As Follows:\n\n Username: $userid\n Password: $userpassword\n\n Lets Hope You Remember It This Time!\n\n\n\n\n\n Powered By: Cool-Palace User Auth", "FROM: Cool-Palace\r\n");
echo "Sent Mail Successfully";
}
}
}

Weedpacket

For one thing, I can't see why you search twice.

The first time, you don't say what you're selecting (MySQL would be giving an error if you looked). But that check's a waste of time anyway.

$get_info_info = "SELECT userid, userpassword FROM user WHERE email  ='$emailaddr'";
$get_info = mysql_query($get_info_info);
if(mysql_num_rows($get_info)==0)
{ // Couldn't find match for email
}
else
{ // Your Cp Login Info is as follows ...
}

And don't forget to actually get $userid and $userpassword out of $get_info at some stage.