Ross wrote:
Search for "SQL Injection" and see why what you're doing is very dangerous. Google is your friend.What is the correct syntax for$query = "SELECT * FROM login where username='$_POST['username']' AND pass ='$_POST['pass']'";Thought this would work.R.
-- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
