what is wrong with this code
Posted: Thu Jun 04, 2009 10:01 am
//login is successfully made with wrong username and password.
<?php
$con=mysql_connect("localhost","root","");
if(!$con)
{
die("could not connect".mysql_error());
}
mysql_select_db("db1",$con);
$uname=$_POST['FirstName'];
$pwd=$_POST['passwordd'];
$sql="select username,password from register where username='$uname' and password='$pwd' ";
$result=mysql_query($sql);
if(!$result)
{
echo "invalid username or password";
}
else
{
echo "go";
}
<?php
$con=mysql_connect("localhost","root","");
if(!$con)
{
die("could not connect".mysql_error());
}
mysql_select_db("db1",$con);
$uname=$_POST['FirstName'];
$pwd=$_POST['passwordd'];
$sql="select username,password from register where username='$uname' and password='$pwd' ";
$result=mysql_query($sql);
if(!$result)
{
echo "invalid username or password";
}
else
{
echo "go";
}