"; if(isset($_GET['name']) && $_GET['name']!='' && !preg_match('/sleep|benchmark|and|or|\||&/i',$_GET['name'])) { $res = mysql_query("SELECT name,email FROM user where name='".$_GET['name']."'"); if(mysql_fetch_object($res)) { // Generation of new password // // this was filtered during the creation of the phps file // die("A new password was generated and sent to your email address!"); } else { $res = mysql_query("SELECT name,email FROM user where name sounds like '".$_GET['name']."'"); if(mysql_fetch_object($res)) { echo "We couldn't find your username, but it sounds like this user:
"; } else { die("We couldn't find your username!
Are you sure it is ".htmlspecialchars($_GET['name'],ENT_QUOTES, 'utf-8')."?"); } $res = mysql_query("SELECT name,email FROM user where name sounds like '".$_GET['name']."'"); while($row = mysql_fetch_object($res)) { echo $row->name; echo "
"; } } } else { echo "

Royal Bank of Fluxembourg



Dear users,
We were hacked by Killy the Bit! Please use this site to generate your new password. Login will be available on the 23.10.2014 10:01 CEST


"; echo '


'; echo '
Please enter your username:

'; } ?>