$stmt = $mysqli -> prepare('SELECT username FROM users_table WHERE username = ?

1. $stmt = $mysqli -> prepare('SELECT username FROM users_table WHERE username = ? AND password = MD5(?)');
2. $stmt -> bind_param("ss",$username,$password);
3. $stmt -> execute();
4. $stmt -> bind_result($result);
5. $stmt -> fetch();