Redirect error in PHP login file

Question

When I run this page, it shows an error:

if (isset($_POST['send'])) {
    mysql_connect("localhost", "MY_DB", "MY_PASSWORD") or die(mysql_error());
    mysql_select_db("") or die(mysql_error());

    $username = $_POST['username'];
    $password = $_POST['password'];

    $result = mysql_query("SELECT * FROM manager WHERE username='$username'") or die(mysql_error());
    $row = mysql_fetch_array($result);
    if ($password == $row['password']) {
        $_SESSION['confirm'] = '1';
        header("Location: view.php");
    } else {
        echo"Not User";
    }
}

It should echo the data of a MySQL table. It logs in correctly, but it does not redirect to view.php. The error is:

Warning: Cannot modify header information - headers already sent by (output started at /home/mftporta/public_html/tooga/login.php:5) in /home/mftporta/public_html/tooga/login.php on line 21

Are you `echo` anything before `header("Location: view.php");`? — Parixit, Oct 29 '13 at 11:57
Please change your DB credentials immediately. You posted them in your question. They are now removed, but still accessible via the revision history. — ComFreek, Oct 29 '13 at 12:02
There is something wrong on how you do the password validation. What if you DB has more than one record. You are not even looping through possible records in your DB. This app is also open for SQL injection. — StBlade, Oct 29 '13 at 12:05

score 1 · Answer 1 · edited May 23 '17 at 11:57

1

this error can be, an output (print, echo, message error, white space, BOM character) before redirect(header())

how remove BOM character

edited May 23 '17 at 11:57

Community

1
1

answered Oct 29 '13 at 12:02

rray

2,518
1
28
38

Redirect error in PHP login file

1 Answers1