Execute($sql); if ((!isset($_SESSION['securityToken']) || !isset($_POST['securityToken'])) || ($_SESSION['securityToken'] !== $_POST['securityToken'])) { $message = true; $pass_message = ERROR_SECURITY_ERROR; } if (!isset($result->fields) || !($admin_name == $result->fields['admin_name'])) { $message = true; $pass_message = ERROR_WRONG_LOGIN; } if (!isset($result->fields) || !zen_validate_password($admin_pass, $result->fields['admin_pass'])) { $message = true; $pass_message = ERROR_WRONG_LOGIN; } // BEGIN LOGIN SLAM PREVENTION if ($message == TRUE) { if (!isset($_SESSION['login_attempt'])) $_SESSION['login_attempt'] = 0; $_SESSION['login_attempt']++; if ($_SESSION['login_attempt'] > 6) { zen_session_destroy(); sleep(15); zen_redirect(zen_href_link(FILENAME_DEFAULT, '', 'SSL')); } else { sleep(4); } } // END LOGIN SLAM PREVENTION if ($message == false) { unset($_SESSION['login_attempt']); $_SESSION['admin_id'] = $result->fields['admin_id']; if (SESSION_RECREATE == 'True') { zen_session_recreate(); } zen_redirect(zen_href_link(FILENAME_DEFAULT, '', 'SSL')); } } ?> >