Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- $salt = 'random string of chars found in config file';
- $password = md5($_POST['password'].$salt);
- $query = "SELECT * FROM `user` WHERE password = '$password';";
- ...
- <?php
- if ($_POST['submit']) {
- //your host detail
- $link = mysql_connect('localhost', 'root', 'root') or die(mysql_error());
- //your dbname
- mysql_select_db('moodle_23') or die(mysql_error());
- $salt = 'MG.b.;w>0B)3c.^:OqDd#?^h'; //change with your salt
- $password = md5($_POST['password'] . $salt);
- $query = "SELECT * FROM mdl_user WHERE username = '{$_POST['username']}' AND password = '$password'";
- $result = mysql_query($query) or die(mysql_error());
- echo '<pre>';
- while ($row = mysql_fetch_assoc($result)) {
- print_r($row);
- }
- }
- ?>
- <form action='' method="post">
- <p>Username = <input type="text" name ="username"/></p>
- <p>Password = <input type="password" name ="password"/></p>
- <input type="submit" value="submit" name="submit"/>
- </form>
- //your host detail
- $link = mysql_connect('localhost', 'root', 'root') or die(mysql_error());
- //your dbname
- mysql_select_db('moodle_23') or die(mysql_error());
- $salt = 'MG.b.;w>0B)3c.^:OqDd#?^h'; //change with your salt
- $password = md5($_POST['password'] . $salt);
- $query = "SELECT * FROM mdl_user WHERE username = '{$_POST['username']}' AND password = '$password'";
- $result = mysql_query($query) or die(mysql_error());
- echo '<pre>';
- while ($row = mysql_fetch_assoc($result)) {
- print_r($row);
- }
- }
- ?>
- <form action='' method="post">
- <p>Username = <input type="text" name ="username"/></p>
- <p>Password = <input type="password" name ="password"/></p>
- <input type="submit" value="submit" name="submit"/>
- </form>
Add Comment
Please, Sign In to add comment