", "*","DROP","WHERE","\'"," OR ","ALERT"); $cache=str_replace($sen,"",strtoupper($var),$num); if($num>0){ return false; } return true; } ////////////////////////////////////// // Iniciar sesion, con 2 variables (USERNAME Y USERID) function login($username, $password) { $username=strtolower($username); $conn = db_connect(); if(nosql($username)==false) return false; if(nosql($password)==false) return false; $code_key="creadores"; $query = "select * from admin where user='$username' and pass=AES_ENCRYPT('$password','$code_key')"; $result = mysql_query($query); if (!$result) // no se realizo la consulta { return false; } elseif (mysql_num_rows($result)==0) // NO EXISTE el username { return false; } elseif (mysql_num_rows($result)==1) // VALIDOS!! { $valid_user = $username; $_SESSION['valid_user_newcolor']=$username; $result = db_result_to_array($result); foreach ($result as $row) { $_SESSION['valid_user_newcolor_name']=$row["nombre"]; } } else { return false; } } function loggout($valid_user) { $old_user = $_SESSION['valid_user_newcolor']; unset($_SESSION['valid_user_newcolor']); $_SESSION = array(); return $old_user; } include_once('funciones-home.php'); include_once('funciones-catalogo.php'); include_once('funciones-videos.php'); include_once('funciones-consejos.php'); include_once('blog/funciones-blog.php'); ?>