$login->uname = isset($_POST['uname']) ? cstr($_POST['uname']) : '';$login->pa

1. $login->uname = isset($_POST['uname']) ? cstr($_POST['uname']) : '';
2. $login->pass = isset($_POST['pass']) ? cstr($_POST['pass']) : '';
3. $login->remember = isset($_POST['remember']) ? cint($_POST['remember']) : 0;
4.  
5. if (isset($_POST['login'])) {
6.     $err = array();
7.     $err['uname'] = !strlen(trim($login->uname)) ? 1 : 0;
8.     $err['pass'] = !strlen(trim($login->pass)) ? 1 : 0;
9.  
10.     if (!array_sum($err)) {
11.         $res = sql("SELECT usr_id FROM cms_users WHERE usr_uname = '". $login->uname ."' AND usr_pass = MD5('". $login->pass ."') AND usr_active = 'Y'");
12.         if ($row = sql_obj($res)) {
13.             $_SESSION['UID'] = $row->usr_id;
14.             if ($login->remember) setcookie('UID', $row->usr_id, time() + 2592000);
15.             location("/");
16.         } else $err['uname'] = 1;
17.     }
18. }