Файл: vsime.com/login/index.php
Строк: 58
<?
include('../system/includes/system.php');
if_user('no_reg');
$nick = NULL;
if (isset($_POST['submited'])) {
$nick = $_POST['nick'];
$password = $_POST['password'];
if (!mysqli_result("SELECT COUNT(*) FROM `user` WHERE `nick` = '$nick' AND `pass` = '".md5($password)."'"))$error[] = 'Неверные логин или пароль.';
elseif(!isset($_SESSION['captcha']) || $_SESSION['captcha'] != $_POST['captcha'])$error[] = 'Вы ошиблись при вводе кода с картинки.';
if (!isset($error)) {
$user=mysqli_fetch_array(mysqli_query($dbi, "SELECT * FROM `user` WHERE `nick` = '$nick' AND `pass` = '".md5($password)."' LIMIT 1"));
$_SESSION['id_user']=$user['id'];
$user=profile($user['id']);
// сохранение данных в COOKIE
if (isset($_POST['in_cookies']) && $_POST['in_cookies']) {
setcookie('id_user', $user['id'], time()+60*60*24*365);
setcookie('pass', $password, time()+60*60*24*365);
}
msg_sess("Вы успешно авторизировались");
header("Location: /autologin/$user[autologin]");
ex_foot();
}
}
$title = 'Авторизация';
ex_head();
show_errors();
echo "<form method='POST' action='' class='multi'>n";
echo "<div class='list'>n";
echo "Ник:<br />n";
echo "<input type='text' name='nick' value='".input_value($nick)."' /><br />n";
echo "</div>n";
echo "<div class='list'>n";
echo "Пароль:<br />n";
echo "<input type='password' name='password' /><br />n";
echo "</div>n";
echo "<div class='block_menu'>n";
echo "<img src='/captcha.php?".session_name()."=".session_id()."' height='35' width='100'><br />n";
echo "Введите код с картинки:<br />n";
echo "<input type='text' name='captcha' value='' /><br />n";
echo "</div>n";
echo "<div class='list'>n";
echo "<input type='checkbox' id='in_cookies_1' name='in_cookies' value='1' /> <label for='in_cookies_1'>Запомнить меня</label><br />n";
echo "</div>n";
echo "<div class='list'>n";
echo "<input type='submit' name='submited' value='Авторизация' />n";
echo "</div>n";
echo "</form>n";
ex_foot();
?>