Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- /**
- * @author aulto - professionalcode.net
- * @copyright 2010
- */
- //session_start();
- function cleanuserinput($dirty)
- {
- if (get_magic_quotes_gpc())
- {
- $clean = mysql_real_escape_string(stripslashes($dirty));
- } else
- {
- $clean = mysql_real_escape_string($dirty);
- }
- return $clean;
- }
- include 'conf_global.php';
- //prefixo da sua tabela no IPB
- $prefix = 'ibf_';
- if (isset($_POST['enviar']))
- {
- mysql_connect($INFO['sql_host'], $INFO['sql_user'], $INFO['sql_pass']);
- mysql_select_db($INFO['sql_database']);
- $user = cleanuserinput($_POST['user']);
- $pass = cleanuserinput($_POST['pass']);
- //echo 'Você inseriu o usuário ' . $user . ' e a senha ' . $pass . '!<br/>';
- $query1 = mysql_query("SELECT * FROM " . $prefix . "members WHERE name = '$user'") or
- die(mysql_error());
- $rs1 = mysql_fetch_object($query1);
- if (mysql_num_rows($query1) > 0)
- {
- $pSalt = $rs1->members_pass_salt;
- $finalPass = md5(md5($pSalt) . md5($pass));
- $query2 = mysql_query("SELECT * FROM " . $prefix . "members WHERE name like '$user' and members_pass_hash like '$finalPass'");
- $rs2 = mysql_fetch_object($query2);
- if (mysql_num_rows($query2) > 0)
- {
- //$_SESSION['logado_no_ipb'] = true;
- echo 'Logado com sucesso!';
- } else
- {
- echo 'Senha incorreta.';
- }
- } else
- {
- //echo 'Este login não existe!';
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
