Untitled

	if(isset($_POST['loginForm']))
	{

		$query = mysql_query('SELECT username, password FROM members WHERE username = \''.mysql_real_escape_string($_POST['username']).'\' AND password = \''.mysql_real_escape_string(md5($_POST['password'])).'\'');

		if(empty($_POST['username']) && empty($_POST['password']))
		{
			$error = '<p><img class="error" src="img/error.png" alt="Error" /> You have left the username & password fields blank.</p>';
		}
		else
		if(empty($_POST['username']))
		{
			$error = '<p><img class="error" src="img/error.png" alt="Error" /> You left the username field blank.</p>';
		}
		else
		if(empty($_POST['password']))
		{
			$error = '<p><img class="error" src="img/error.png" alt="Error" /> You left the password field blank.</p>';
		}
		else
		if(mysql_num_rows($query) == 0)
		{
			$error = '<p><img class="error" src="img/error.png" alt="Error" /> Your username & password do not match, please try again.</p>';
		}
		else
		if(mysql_num_rows($query) > 0)
		{
			$error = '<p>Successful username & password combination!</p>';
			unset($_POST);
		}
	}