there should be a session created that contains the unencrypted password, in the email body, you can include the un-encrypted session variable rather than using the value from the database, send a copy of your page and I can tell you the code to change.