// New Script function login() { if(isset($_POST['login'])) {

1.  
2.  
3. // New Script
4. function login()
5. {
6.  
7. if(isset($_POST['login']))
8. {
9. $user = mysql_real_escape_string(preg_replace("@[^a-z0-9]@i","",$_POST['username']));
10. $passw = mysql_real_escape_string($_POST['password']);
11. $pass = sha1(strtoupper($_POST['username'].':'.$passw);
12.  
13. $q = $this->db->select('*','account',"username = '$user' AND sha_pass_hash = '$pass'");
14. if(mysql_num_rows($q) > 0)
15. {
16. $row = mysql_fetch_assoc($q);
17. foreach($row as $c => $v)
18. {
19. $_SESSION[$c] = $v;
20. }
21.  
22. // Old
23. function login()
24. {
25.  
26. if(isset($_POST['login']))
27. {
28. $user = $_POST['username'];
29. $pass = sha1(strtoupper($_POST['username'].':'.$_POST['password']));
30.  
31. $q = $this->db->select('*','account',"username = '$user' AND sha_pass_hash = '$pass'");
32. if(mysql_num_rows($q) > 0)
33. {
34. $row = mysql_fetch_assoc($q);
35. foreach($row as $c => $v)
36. {
37. $_SESSION[$c] = $v;
38. }