Try to sign up a user using a password like abc123 and then post the password and the hash here. Could just be some error with the password itself.
Some notes regarding the code:
Most importantly, you are using mysqli which support parameterized queries, use them! As it stands your code is vulnerable to sql injection.
$user = $_POST[‘user’];
$email = $_POST[‘email’];
$cfemail = $_POST[‘cfemail’];
$pass = $_POST[‘pass’];
$cfpass = $_POST[‘cfpass’];
if($email && $cfemail && $pass && $cfpass)
$user = $_POST['user'];
$email = $_POST['email'];
$cfemail = $_POST['cfemail'];
$pass = $_POST['pass'];
$cfpass = $_POST['cfpass'];[/php]
You don’t need to assign these variables twice.
[php]if(strlen($user) <= 25 && strlen($pass) <= 25)[/php]
You should not limit passwords to 25 characters.
You should also try to limit the nesting in your code, this file in particular has deep if-nesting which makes it uneccessary hard to read.