<?phpob_start();session_start();require($_SERVER["DOCUMENT_ROOT"] . "/page

1. <?php
2. ob_start();
3. session_start();
4. require($_SERVER["DOCUMENT_ROOT"] . "/pages/config.php");
5.     if(isset($_POST['submit']))
6.     {
7.         $user = $_POST['user'];
8.         $pass = $_POST['pass'];
9.         $user = stripslashes(mysql_real_escape_string($user));
10.         $pass = md5(stripslashes(mysql_real_escape_string($pass)));
11.         $sql = "SELECT * FROM members WHERE user='$user' and pass='$pass'";
12.         $result = mysql_query($sql);
13.         if(mysql_num_rows($result) == 1)
14.         {      
15.             $_SESSION['User'] = $user;
16.             $_SESSION['Pass'] = $pass;
17.             $_SESSION['LoggedIn'] = 1;
18.                 while ($row = mysql_fetch_assoc($result)){
19.                     $_SESSION['ID'] = $row['ID'];
20.                 }
21.             header("location:index.php");
22.         }
23.         else       
24.             header("location:wrongup.php");            
25.     }
26.     else
27.     {
28.         header("location:index.php");
29.     }
30. ob_end_flush();
31. ?>