I changed the GET word to POST, and it doesn't change the password still, but YES - it is still being redirected back to the profile page after submitting it.
$WA_fieldValuesStr = "".WA_SHA1Encryption(((isset($_GET["newpassword"]))?$_GET["newpassword"]:"")) ."";
to:
$WA_fieldValuesStr = "".WA_SHA1Encryption(((isset($_POST["newpassword"]))?$_POST["newpassword"]:"")) ."";
are you still being redirected to the users_Profile.php page?