Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- If (isset($_POST['user'], $_POST['pass'],$_POST['soacc'],$_POST['sotien'] )) {
- $Host = 'mysql.hostinger.vn';
- $User = '';
- $Pass = '';
- $MyDB = '';
- $_POST['user'] = strip_tags($_POST['user']);
- $_POST['user'] = addslashes($_POST['user']);
- $_POST['pass'] = strip_tags($_POST['pass']);
- $_POST['pass'] = addslashes($_POST['pass']);
- $_POST['soacc'] = strip_tags($_POST['soacc']);
- $_POST['soacc'] = addslashes($_POST['soacc']);
- $_POST['sotien'] = strip_tags($_POST['sotien']);
- $_POST['sotien'] = addslashes($_POST['sotien']);
- $user = $_POST['user'];
- $pass = $_POST['pass'];
- $soacc = $_POST['soacc'];
- $sotien = $_POST['sotien'];
- $con = mysqli_connect($Host,$User,$Pass,$MyDB);
- If (mysqli_connect_errno())
- {
- Echo 'CANT_CONNECT';
- } else {
- $Query = Mysqli_Query($con,"SELECT * FROM dblogin WHERE Account='" . $user . "' and Password='" . $pass . "'");
- If (!$Query || mysqli_num_rows($Query) == 0) {
- Echo 'EXIST';
- }
- Else {
- mysqli_query($con,"UPDATE dblogin SET So_Acc='".$soacc ."' and So_Tien='".$sotien ."' WHERE Account='" . $user . "' and Password='" . $pass . "'");
- Echo 'DONE';
- }
- mysqli_close($con);
- }
- } Else {
- Echo 'ERROR';
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement