<?php
session_save_path("/home/users/web/b557/sl.flyingcoachlimo/public_html/cgi-bin/tmp");
session_start();
// If the user has submitted the form, preform the following
if (isset($_POST['submit'])) {
include("incDBConnectAdmin.php");
$eUserNameInput = $_POST['eUserName'];
$ePasswordInput = $_POST['ePassword'];
$query = "SELECT * FROM logininfo WHERE eUserName='" . $eUserNameInput . "'";
$result = mysql_query($query);
if(!$result)
{
echo 'Query failed: '.mysql_error();
}
while($row = mysql_fetch_array($result))
{
if (($eUserNameInput == $row[1]) && ($ePasswordInput == $row[2])) {
$_SESSION['verified'] = "A1OK";
echo "<meta http-equiv='refresh' content='0;url=main.php'>";
exit("Please wait.... Logging in...");
}
}
}
?>
<link rel="stylesheet" href="../stylesheet.css" type="text/css" />
<table align="center" border="0" width="350">
<tr valign="top" height="25">
<td>
<h1>
www.LetUsDesign.it - Edit.it CMS v1.0.7
</h1>
</td>
</tr>
<tr valign="top" height="25">
<td>
<form action="index.php" method="post">
<table align="center" border="1" cellspacing="0" cellpadding="0" width="500">
<tr>
<td align='center' width="50%">
User Name:
</td>
<td align='center' width="50%">
<input type='text' name='eUserName' class='formfield'>
</td>
</tr>
<tr>
<td align='center' width="50%">
Password
</td>
<td align='center' width="50%">
<input type='password' name='ePassword' class='formfield'>
</td>
</tr>
<tr>
<td align='center' colspan="2" width="100%">
<input type="submit" name="submit" class="formfield" value="Login">
</td>
</tr>
</table>
</form>
</td>
</tr>
</table>