prepare("SELECT uid,passwd FROM jokes_users WHERE login=?"); $stm->execute(array($user)); if ($row=$stm->fetch()) { if ($row["passwd"]==md5($pass)) { $_SESSION["uid"] = $row["uid"]; header("Location: main.php"); exit(); } } flash("Nom d'utilisateur ou mot de passe incorrect"); header("Location: start.php");