} if (isset($_POST["password"])) { $getx['password'] = $_POST['password']; } if (isset($_POST["check"])) { $getx['check'] = $_POST['check']; } //} //LOGError("PHPID=".$_COOKIE['PHPSESSID'].",extra=".$_SESSION['usertable']['usersessionextra']. // ",session=".session_id().",name=".$getx['name'].", password="******",check=".$getx['check']); if (!isset($_SESSION["usertable"])) { if (isset($getx['name']) && $getx['name'] != "" && isset($getx['password']) && $getx['password'] != "") { $name = $getx["name"]; LogLevel("Connection try by IP " . getIP() . ", username="******"password"]; $usertable = DBLogIn($name, $password, false); if (!$usertable) { ob_end_flush(); echo "<!-- <ERROR1> " . session_id() . " " . session_id() . " -->\n"; exit; } if (!isset($getx['check'])) { ob_end_flush(); echo "<!-- <ERROR2> " . session_id() . " " . session_id() . " -->\n"; exit; } } else { ob_end_flush(); LogLevel("Init connection by IP " . getIP(), 2); echo "<!-- <SESSION1> " . session_id() . " " . session_id() . " -->\n"; exit;
userHASH = document.form1.name.value; passHASH = js_myhash(js_myhash(document.form1.password.value)+'<?php echo session_id(); ?> '); document.form1.name.value = ''; document.form1.password.value = ' '; document.location = 'index.php?name='+userHASH+'&password='******'action']) && $_GET['action'] == 'scoretransfer') { echo "SCORETRANSFER OK"; } else { if ($main && $_SESSION["usertable"]["usertype"] == 'site') {