session_start(); if (session_is_registered("valid_user")) { include("../include/FunctionDB.php"); ConnectDB(); $Flag = true; $Username = htmlspecialchars(trim($_POST[Username])); $NewPassword = htmlspecialchars(trim($_POST[NewPassword])); $PasswordTemp = htmlspecialchars(trim($_POST[PasswordR])); $Priority = htmlspecialchars(trim($_POST[Priority])); if ($NewPassword !="" ) { $PasswordR = $NewPassword; $Password = md5($NewPassword); } else { $PasswordR = $PasswordTemp; $Password = md5($PasswordTemp); } $sql2 ="UPDATE user_tb SET Username='$Username',Password='$Password',PasswordR='$PasswordR',Priority='$Priority' WHERE code='$code'"; $result2 = mysql_query($sql2) or die("Update Error $strSQL".mysql_error()); $msg.="