fout in de mysql_num_rows();

Je doet dan ook geen enkele controle! Verander

<?php
    $query = mysql_query("SELECT * FROM tbl_users WHERE user_name = '" . $_POST['user'] . "' AND user_pass = '" . md5($_POST['pass']) . "'");
?>

eens in

<?php
    $sql = "
        SELECT *
        FROM tbl_users
        WHERE
            user_name = '" . $_POST['user'] . "'
        AND
            user_pass = '" . md5($_POST['pass']) . "'";
    if (!$res = mysql_query ($sql)) {
        echo '<pre>';
        trigger_error (mysql_error ());
        echo htmlentities (str_replace ("\t", '', $sql));
        echo '</pre>';
    }
    else {
    // hier gaan fetchen
    }
?>

krijg dit terug
Notice: Undefined index: cfg_wlcmtitle in /storage/mijndomein/users/058605/public/sites/login.chat2you.eu/config.php on line 34

Notice: Undefined index: cfg_wlcmmsg in /storage/mijndomein/users/058605/public/sites/login.chat2you.eu/config.php on line 35

Notice: Undefined index: cfg_wlcmtitle in /storage/mijndomein/users/058605/public/sites/login.chat2you.eu/config.php on line 34

Notice: Undefined index: cfg_wlcmmsg in /storage/mijndomein/users/058605/public/sites/login.chat2you.eu/config.php on line 35


Notice: Table 'memberlogin.tbl_users' doesn't exist in /storage/mijndomein/users/058605/public/sites/login.chat2you.eu/index.php on line 30

SELECT *
FROM tbl_users
WHERE
user_name = 'admin'
AND
user_pass = '81dc9bdb52d04dc20036dbd8313ed055'

Notice: Undefined variable: query in /storage/mijndomein/users/058605/public/sites/login.chat2you.eu/index.php on line 38

Warning: mysql_num_rows(): supplied argument is not a valid MySQL result resource in /storage/mijndomein/users/058605/public/sites/login.chat2you.eu/index.php on line 38

Die hele tabel tbl_users bestaat niet in je database. Vandaar dat je query mislukt.

die bestaat wel
of ik doe het fout in het script

<?
error_reporting(E_ALL);
session_start();

include("config.php");
include("functions.php");

if(!isset($_COOKIE['last_active']))
{
	if(isset($_SESSION['user_id']))
	{
		mysql_query("UPDATE tbl_users SET user_lastactive = NOW() WHERE user_id = '" . $_SESSION['user_id'] . "'") or die(mysql_error());
		setcookie("last_active",true,time()+5);
	}
}

if(!isset($_SESSION['user_id']))
{
	if(isset($_POST['login']))
	{
		$sql = "
        SELECT *
        FROM tbl_users
        WHERE
            user_name = '" . $_POST['user'] . "'
        AND
            user_pass = '" . md5($_POST['pass']) . "'";
    if (!$res = mysql_query ($sql)) {
        echo '<pre>';
        trigger_error (mysql_error ());
        echo htmlentities (str_replace ("\t", '', $sql));
        echo '</pre>';
    }
    else {
    // hier gaan fetchen
    }

		$result = mysql_num_rows($query);

		if(empty($result))
		{
			echo "<script>alert('Login Incorrect.'); document.location.href=('index.php')</script>";
		}
		else
		{
			while($row = mysql_fetch_assoc($query))
			{
				$user_id = $row['user_id'];
			}

			header("Location: index.php");
			$_SESSION['user_id'] = $user_id;
		}
	}
	else
	{
?>
<h1>Log In</h1>
<form method="POST">
<input type="hidden" value="1" name="login">
Username : <input type="text" name="user" maxlength="15"><br>
Password : <input type="password" name="pass" maxlength="15"><br><br>

<input type="Submit" value="Login"><br><br>
<img src="icons/register.gif"> <a href="register.php">Register</a><br>
<img src="icons/memberlist.gif"> <a href="memberlist.php">Memberlist</a>

<?
	}
}
else
{
	$query = mysql_query("SELECT * FROM tbl_users WHERE user_id = '" . $_SESSION['user_id'] . "'");

	while($row = mysql_fetch_assoc($query))
	{
		echo "Username : <b>" . $row['user_name']. "</b>";

		if($row['user_pm'])
		{
			$msg = mysql_result(mysql_query("SELECT COUNT(1) FROM tbl_msg WHERE msg_to = '" . $_SESSION['user_id'] . "'"),0);

			if(empty($msg))
			{
				$msg = "<font color=\"#008000\">Empty</font>";
			}
			elseif($msg >= $cfg['max_msg'])
			{
				$msg = "<font color=\"#FF0000\">FULL</font>";
			}
			else
			{
				$msg = $msg . " / " . $cfg['max_msg'];
			}

			echo "<br>\n";
			echo "Inbox : <b>". $msg ."</b> ( <a href=\"msg.php?act=inbox\">Open</a> )";
		}
	}

	echo "<br>\n<br>\n";

	if(isset($_SESSION['admin_login']))
	{
		
		echo "<img src=\"icons/admin.gif\"> <a href=\"admin.php\">Admin Page</a>";
		echo "<br>\n";
	}

	echo "<img src=\"icons/memberlist.gif\"> <a href=\"memberlist.php\">Memberlist</a>";
	echo "<br>\n";
	echo "<img src=\"icons/profile.gif\"> <a href=\"profile.php?act=edit_profile\">Change Profile</a>";
	echo "<br>\n";
	echo "<img src=\"icons/profile.gif\"> <a href=\"profile.php?act=view&user_id=" . $_SESSION['user_id'] . "\">My Profile</a>";
	echo "<br>\n";
	echo "<img src=\"icons/logoff.gif\"> <a href=\"logoff.php\">Log Off</a>";
}
?>

heb nu het script aangepast
het is nu zo

<?
error_reporting(E_ALL);
session_start();

include("config.php");
include("functions.php");

if(!isset($_COOKIE['last_active']))
{
	if(isset($_SESSION['user_id']))
	{
		mysql_query("UPDATE tbl_users SET user_lastactive = NOW() WHERE user_id = '" . $_SESSION['user_id'] . "'") or die(mysql_error());
		setcookie("last_active",true,time()+5);
	}
}

if(!isset($_SESSION['user_id']))
{
	if(isset($_POST['login']))
	{
		$sql = "
        SELECT *
        FROM tbl_users
        WHERE
            user_name = '" . $_POST['user'] . "'
        AND
            user_pass = '" . md5($_POST['pass']) . "'";
    if (!$res = mysql_query ($sql)) {
        echo '<pre>';
        trigger_error (mysql_error ());
        echo htmlentities (str_replace ("\t", '', $sql));
        echo '</pre>';
    }
    else {

		{
			while($row = mysql_fetch_assoc($query))
			{
				$user_id = $row['user_id'];
			}

			header("Location: index.php");
			$_SESSION['user_id'] = $user_id;
		}
	}
	else
	{
?>
<h1>Log In</h1>
<form method="POST">
<input type="hidden" value="1" name="login">
Username : <input type="text" name="user" maxlength="15"><br>
Password : <input type="password" name="pass" maxlength="15"><br><br>

<input type="Submit" value="Login"><br><br>
<img src="icons/register.gif"> <a href="register.php">Register</a><br>
<img src="icons/memberlist.gif"> <a href="memberlist.php">Memberlist</a>

<?
	}
}
else
{
	$query = mysql_query("SELECT * FROM tbl_users WHERE user_id = '" . $_SESSION['user_id'] . "'");

	while($row = mysql_fetch_assoc($query))
	{
		echo "Username : <b>" . $row['user_name']. "</b>";

		if($row['user_pm'])
		{
			$msg = mysql_result(mysql_query("SELECT COUNT(1) FROM tbl_msg WHERE msg_to = '" . $_SESSION['user_id'] . "'"),0);

			if(empty($msg))
			{
				$msg = "<font color=\"#008000\">Empty</font>";
			}
			elseif($msg >= $cfg['max_msg'])
			{
				$msg = "<font color=\"#FF0000\">FULL</font>";
			}
			else
			{
				$msg = $msg . " / " . $cfg['max_msg'];
			}

			echo "<br>\n";
			echo "Inbox : <b>". $msg ."</b> ( <a href=\"msg.php?act=inbox\">Open</a> )";
		}
	}

	echo "<br>\n<br>\n";

	if(isset($_SESSION['admin_login']))
	{
		
		echo "<img src=\"icons/admin.gif\"> <a href=\"admin.php\">Admin Page</a>";
		echo "<br>\n";
	}

	echo "<img src=\"icons/memberlist.gif\"> <a href=\"memberlist.php\">Memberlist</a>";
	echo "<br>\n";
	echo "<img src=\"icons/profile.gif\"> <a href=\"profile.php?act=edit_profile\">Change Profile</a>";
	echo "<br>\n";
	echo "<img src=\"icons/profile.gif\"> <a href=\"profile.php?act=view&user_id=" . $_SESSION['user_id'] . "\">My Profile</a>";
	echo "<br>\n";
	echo "<img src=\"icons/logoff.gif\"> <a href=\"logoff.php\">Log Off</a>";
}
?>

en krijg de volgende fout

Parse error: syntax error, unexpected T_ELSE in /storage/mijndomein/users/058605/public/sites/login.chat2you.eu/index.php on line 46

hij werkt nu
bedankt voor je hulp

@Wesley: * Bumpen * is pas na 24 uur toegestaan. Lees de regels (FAQ).

waar slaat dat berichtje nu weer op