<?php session_start(); error_reporting(0); if($_POST['login']){ $u

1.     <?php  
2.         session_start();
3.         error_reporting(0);
4.         if($_POST['login']){
5.         $username = $_POST['nick'];
6.         $password = $_POST['pw'];
7.         $username = str_replace("'","",$username);
8.         $username = str_replace("<","",$username);
9.         $password = str_replace("<","",$password);
10.         $password = str_replace("'","",$password);
11.         $username = str_replace("š","a",$username);
12.         $username = str_replace("ž","z",$username);
13.         $password = str_replace("ć","c",$password);
14.         $password = str_replace("č","c",$password);
15.         $password = str_replace("đ","d",$password);
16.         $vrati = md5($password);
17.         $isto = mysql_query("SELECT * FROM slusaoci WHERE username='$username' and password='$password'") or die(mysql_error());
18.         if(mysql_num_rows($isto) == 1){
19.        
20.         if(isset($_POST['remember'])){
21.         setcookie("username", $username, time()+60*60*24*100, "/");
22.         setcookie("password", $vrati, time()+60*60*24*100, "/");
23.         echo "<script>window.location=\"index.php\"</script>";
24.         } else {
25.         setcookie("username", $username);
26.         setcookie("password", $vrati);
27.         echo "<script>window.location=\"index.php\"</script>";
28.         }
29.         $ip2 = getenv('REMOTE_ADDR');
30.         mysql_query("UPDATE slusaoci SET ip='$ip2' WHERE username='$username'")or die(mysql_error());
31.         } else {
32.         echo "<center><p style='color:red;font-size:12px;'>Netacan username ili password</p></center>";
33.         } }?>