Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?
- $un = strip_tags($_POST['un']);
- $pw = strip_tags($_POST['pw']);
- $connect = mysql_connect('localhost','root','') or die("Couldn't connect");
- mysql_select_db('login') or die("Couldn't find DB");
- $findun = mysql_query("SELECT * FROM users WHERE username='$un'");
- $findpw = mysql_query("SELECT * FROM users WHERE password='$pw'");
- $priv = null;
- $priv = mysql_query("SELECT priv FROM users WHERE username='$un'");
- while ($row = mysql_fetch_object($priv))
- {
- $rowp = $row->priv;
- }
- if (mysql_num_rows($findun)==0)
- echo $un.' not found.';
- else
- {
- if (mysql_num_rows($findpw)==0)
- echo $pw.' is an invalid password';
- else
- {
- echo 'Welcome, '.$un.'! You now have '.$rowp.' priviledges';
- }
- }
- echo '<br /><br /><a href="admin.php">Admin page</a>'
- ?>
Add Comment
Please, Sign In to add comment