updated CSRF tokens

account_settings.php

@@ -101,6 +101,7 @@ $user = $result->fetch_assoc();
                                     <input type="email" id="email" name="email" class="form-control" value="<?php echo $user['email']; ?>" required>
                                 </div>
                             </div>
+                            <input type="hidden" name="csrf_token" value="<?php echo generateCSRFToken(); ?>">
                             <div class="col-md-12">
                                 <div class="form-group mb-0">
                                     <button type="submit" class="theme-btn style-two" style="width:100%;">Update Info</button>
@@ -113,6 +114,7 @@ $user = $result->fetch_assoc();
 
                     <!-- Change Password Form -->
                     <form id="changePasswordForm" name="changePasswordForm" action="change_password.php" method="post">
+                        <input type="hidden" name="csrf_token" value="<?php echo generateCSRFToken(); ?>">
                         <div class="col-md-12 mt-20">
                             <h4>Change Password</h4>
                             <div id="responseMessage2"></div> <!-- Message display area -->