On 29 April 2010 16:44, Alexander Schunk wrote:
> Hello,
>
> i have it now as follows:
>
> while($dbbenutzer = mysql_fetch_assoc($sqlbenutzername))
> while($dbpasswort = mysql_fetch_assoc($sqlpasswort)){
You have things very twisted. Check the code posted by Karl - you only
need *ONE* row
Yes. You are correct. Did not include that part, sry.
Dont forget mysql_real_escape_string.
:)
Karl
On Apr 29, 2010, at 9:37 AM, Peter Lind wrote:
On 29 April 2010 15:00, Karl DeSaulniers wrote:
Hi,
Maybe try...
$benutzername = $_GET['username'];
$pass = $_GET['password'];
$result = "SELE
On 29 April 2010 15:00, Karl DeSaulniers wrote:
> Hi,
> Maybe try...
>
> $benutzername = $_GET['username'];
> $pass = $_GET['password'];
>
> $result = "SELECT * FROM usertable WHERE sqlbenutzername='$benutzername'";
Don't use values from $_GET without sanitizing first. If using mysql_*
functions,
Hi,
Maybe try...
$benutzername = $_GET['username'];
$pass = $_GET['password'];
$result = "SELECT * FROM usertable WHERE
sqlbenutzername='$benutzername'";
while($r = mysql_fetch_row($result)) {
$dbbenutzer = $r["sqlbenutzername"];
$dbpasswort = $r["sqlpasswort"];
}
if($b
