Php authorization fails. Tried to do by login, then everything passes, but not by password [closed]

Question

<?php $connect=mysql_connect('localhost','root', '') or die(mysql_error()); mysql_select_db(regist); if(isset($_POST['enter'])){ $logn=$_POST['login']; $password=$_POST['password']; $query=mysql_query("SELECT `password` FROM `reg` WHERE `login` = '$login'"); $user_data=mysql_fetch_array($query); if(empty($_POST["password"])){ echo "Пароль не введен"; } if($user_data === md5($password)) { echo "OK"; $an=true; }else{echo ("Неверный логин или пароль");} } ?> <div class="authorization"> <input type="text" name="login" placeholder="Логин" required/> <input type="password" name="password" placeholder="Пароль" required/> <input type="submit" name="enter" value="Войти" /> </div>

Update

That's what gives out. bool(false) . As I understand it, I get an empty request? Framed

 $query=mysql_query("SELECT `login` FROM `reg` WHERE `login` = '$login'"); if($user_data === $login) { echo "OK"; $an=true; }

And everything goes well. And the password does not work.

The author, you have a hole in the form of a sql injection in your request, and yet your customers will trust you with their personal data.

Bagul bagul 17 five · Answer 1 · 2016-04-19T20:30:03

Understood. There were 2 problems. It was sealed up and in bd there was a restriction on characters. Thanks to everyone who tried to help.

Php authorization fails. Tried to do by login, then everything passes, but not by password [closed]

Closed due to the fact that it was off-topic by Athari , zRrr , Nick Volynkin ♦ 11 May '16 at 7:09 .

1 answer 1

More articles: