$con=mysqli_connect("*****", "****", "***", "****"); if(isset($_POST['login'

1. $con=mysqli_connect("*****", "****", "***", "****");
2. if(isset($_POST['login'])){
3. $email= mysqli_escape_string($con, $_POST['Email']);
4. $password= mysqli_escape_string($con, $_POST['Password']);
5. $select_user= "SELECT * FROM users WHERE Email='$email' AND Passwords='$password'";
6. $run_user= mysqli_query($con , $select_user);
7. $check_user= mysqli_num_rows($run_user);
8. if($check_user > 0) {
9. $_SESSION['Email'] = $email;
10.  
11. header("location:account.php");}
12. else{echo "wrong username or password";
13. }
14.  
15. }