"; msg_box("Account not found", "Your account was not found in the database.", "black"); echo ""; exit; } if ($ckpasswd==$opasswd) { if (($epasswd1!=$epasswd2) || ($epasswd1=='')) { echo ""; msg_box("Change Password Results", "New passwords do not match, or you tried to change your password to a blank password. The password cannot be blank!", "black"); echo ""; } else { @mysql_query(" UPDATE passwd SET epasswd='$epasswd1' WHERE email='$email'"); echo ""; msg_box("Change Password Results", "New password was set successfully.", "black"); $epasswd=$epasswd1; } } else { echo ""; msg_box("Change Password Results", "Current Password was not entered correctly!", "black"); $epasswd=$opasswd; /* set password to null since user doesn't know it */ } ?>