if($_SERVER["REQUEST_METHOD"] == "POST") { $myusername = mysqli_real_es

1. if($_SERVER["REQUEST_METHOD"] == "POST") {
2.  
3. $myusername = mysqli_real_escape_string($db,$_POST['email']);
4. $mypassword = md5 (mysqli_real_escape_string($db,$_POST['password']));
5.  
6. $sql = "SELECT id FROM users WHERE email = '$myusername' and password = '$mypassword'";
7. $result = mysqli_query($db,$sql);
8. $row = mysqli_fetch_array($result,MYSQLI_ASSOC);
9. $active = $row['active'];
10.  
11. $count = mysqli_num_rows($result);
12.  
13. if($count == 1) {
14. $_SESSION['login_user'] = $myusername;
15.  
16. header("location: dashboard.php");
17. echo "test";
18. }else {
19. $error = "Your Login Name or Password is invalid!";
20. echo $error;
21. }
22. }