Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- include "koneksi.php";
- //emerer.com
- function antiinjection($data){
- $filter_sql = mysql_real_escape_string(stripslashes(strip_tags(htmlspecialchars($data,ENT_QUOTES))));
- return $filter_sql;
- }
- $username = antiinjection($_POST['username']);
- $pass = antiinjection(md5($_POST['password']));
- $login=mysql_query("SELECT * FROM tbl_user WHERE username='$_POST[username]' and password='$_POST[password]'");
- $ketemu=mysql_num_rows($login);
- $r=mysql_fetch_array($login);
- // Apabila username dan password ditemukan
- if ($ketemu > 0){
- session_start();
- $_SESSION[namauser] = $r[username];
- $_SESSION[passuser] = $r[password];
- header('location:admin.php');
- }
- else{
- echo "<center>LOGIN GAGAL! <br>
- Username atau Password Anda tidak benar.<br>";
- echo "<a href=index.php><b>ULANGI LAGI</b></a></center>";
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement