$Username = mysql_real_escape_string($_POST['username']);$Password = mysql_rea

1. $Username = mysql_real_escape_string($_POST['username']);
2. $Password = mysql_real_escape_string($_POST['password']);
3.  
4.  
5. $query = "SELECT * FROM members WHERE Username = '".$Username."' AND Password = MD5('".$Password."')";
6. $result = mysql_query($query);
7. $MemberSettings = mysql_fetch_array($result);
8. $MemberCount = mysql_num_rows($result);
9.  
10. if($MemberCount == "1"){
11. $_SESSION['Username'] = $MemberSettings['Username'];
12. }