Tweet
$user = addslashes($_POST['user']);
$pass = md5($_POST['pass']);
$refer = $_GET['refer'];
if ($user == "" OR $_POST['pass'] == "") {
$ausgabe = 1;
} else {
$abfrage = mysql_query("SELECT id FROM user WHERE name LIKE '$user'");
$ergebnis = mysql_num_rows($abfrage);
if($ergebnis == 0) {
$ausgabe = 2;
} else {
$abfrage = "SELECT pass FROM `user` WHERE name LIKE '$user' LIMIT 1";
$ergebnis = mysql_query($abfrage);
$row = mysql_fetch_object($ergebnis);
if($row->pass == $pass) {
$_SESSION['username'] = $user;
setcookie("username", $user, time() + (60 * 60 * 24 * 100));
setcookie("password", $pass, time() + (60 * 60 * 24 * 100));
$ausgabe = 3;
} else {
$ausgabe = 4;
}
}
}
Kommentar