<?phpinclude "includes/connect.php"; $username =$_POST['username'];$passwo

1. <?php
2. include "includes/connect.php";
3. $username =$_POST['username'];
4. $password =$_POST['password'];
5. $encrypted_password=md5($password);
6. $sql="SELECT * FROM users WHERE username='$username' and password='$encrypted_password'";
7. $result=mysql_query($sql);
8. $count=mysql_num_rows($result);
9.  
10. if($count==1){
11. session_register("username");
12. session_register("encrypted_password");
13. header("members/index.php");
14. }
15.  
16. else
17. {
18. echo 'Wrong username and/or password';
19. }
20. ?>