Sign in form always showing "Wrong Credentials"

by

Your SQL query/logic is completely wrong.

What you should do is check if that user and password combination exits in database using WHERE clause. But actually you are doing is fetching each row and checking for equality. In such situation you can also get n numbers of wrong credentials.

$query = mysql_query("SELECT * FROM table WHERE userName="$_POST[user]" AND pass="$_POST[pass]"") or die(mysql_error()); 

$row = mysql_fetch_array($query) or die(mysql_error()); 

if(!empty($row['userName']) AND !empty($row['pass'])) { 
      echo "SUCCESSFULLY LOGIN TO USER PROFILE PAGE..."; } 
else { 
      echo "SORRY... YOU ENTERD WRONG ID AND PASSWORD... PLEASE RETRY..."; 
}

Here again a better check would be to check if number of rows==1, which is best practice and convention you should follow.

More Related Contents:

  1. Prevent creating duplicate entries in PHP
  2. While loop within While loop not looping
  3. php nested while loop. Inner loop works only once [closed]
  4. i have stored array in database as a string how can retrieve that array?
  5. PHP – Change value y,n in database [closed]
  6. Insert array into MySQL database with PHP
  7. Sum values of multidimensional array by key without loop
  8. I have an array of integers, how do I use each one in a mysql query (in php)? [duplicate]
  9. Save PHP array to MySQL?
  10. php/mysql with multiple queries
  11. Notice: Array to string conversion in
  12. mysql_fetch_array, mysql_fetch_assoc, mysql_fetch_object
  13. Using if(isset($_POST[‘submit’])) to not display echo when script is open is not working
  14. How get all values in a column using PHP?
  15. mysql select query within a serialized array
  16. PDO fetch one column from table into 1-dimensional array
  17. Get all mysql selected rows into an array
  18. Select from mysql table WHERE field=’$array’?
  19. What are the differences between backtick and single quote? Can I use IF statement in a query as above?
  20. New containing div after every 3 records
  21. MySQL query using an array [duplicate]
  22. How to insert json array into mysql database
  23. Why do I get “Resource id #4” when I apply print_r() to an array in PHP? [duplicate]
  24. PHP/SQL Insert Error when using Named Placeholders
  25. Create PHP array from MySQL column
  26. How can I list data in sections by an ID, with a while loop in PHP? [closed]
  27. Save array in mysql database
  28. MySQL PHP – SELECT WHERE id = array()? [duplicate]
  29. PHP array delete by value (not key)
  30. PHP get index of last inserted item in array

Leave a Comment