Файл: admin/p/auth.php
Строк: 15
<?
include "config/admin.php";
$PSW=md5("12hf6".$PASSWORD);
if(!(isset($_SESSION["username"]) && isset($_SESSION["password"])) or $_SESSION["password"]!=$PSW or $_SESSION["username"]!=$USER or !preg_match("/^[A-Z,a-z,0-9,_]{3,32}+$/",$_SESSION["username"]))
{
?>
<script type="text/javascript">
location.replace("login.php");
</script>
<noscript>
<meta http-equiv="refresh" content="0; url=login.php">
</noscript>
<?
$_SESSION=array();
session_destroy();
exit();
}
//code ENDS
?>