if($_GET[username]){ $_COOKIE[username] = $_GET[username]; $_COOKIE[passwo

1. if($_GET[username])
2. {
3.     $_COOKIE[username] = $_GET[username];
4.     $_COOKIE[password] = md5($_GET[password]);
5. }
6.  
7. $result = dbquery("SELECT * FROM ".PREFIX."user WHERE username = '".$_COOKIE[username]."' AND password = '".$_COOKIE[password]."'");
8. $user = mysql_fetch_array($result);
9.  
10. if(!$user[id])
11. {
12.     header("Location: ./login.php?loc=".$_SERVER[REQUEST_URI]);
13.     exit;
14. }