示例#1
0
        private void stloginbtn_Click(object sender, EventArgs e)
        {
            string        strCnx = @"Data Source=.\SQLEXPRESS;AttachDbFilename=E:\data 3 new\Final project\print\controller.mdf;Integrated Security=True;User Instance=True";
            SqlConnection cnx    = new SqlConnection(strCnx);

            cnx.Open();

            //This code is susceptible to SQL injection attacks.
            string strQry = "SELECT Count(*) FROM Registrationtb WHERE name='" + Logintxt.Text + "' AND Password='******'";
            int    intRecs;

            SqlCommand cmd = new SqlCommand(strQry, cnx);

            intRecs = (int)cmd.ExecuteScalar();

            if (intRecs > 0)
            {
                Overview mp = new Overview();
                mp.Show();
                Logintxt.Text    = "";
                Passwordtxt.Text = "";
                this.Hide();

                //MessageBox.Show("login successfull");
            }
            else
            {
                MessageBox.Show("invalid information");
            }

            cnx.Close();
        }
        private void backbtn_Click(object sender, EventArgs e)
        {
            Overview f2 = new Overview();

            f2.Show();
            this.Hide();
        }
示例#3
0
        private void admloginbtn_Click(object sender, EventArgs e)
        {
            string a;
            string b;

            a = admlogintxt.Text;
            b = admpasswordtxt.Text;
            if ((a == "pstu") && b == "123")
            {
                Overview f2 = new Overview();
                f2.Show();
            }
            else
            {
                MessageBox.Show("Wrong User Name OR Password");
                admlogintxt.Text    = "";
                admpasswordtxt.Text = "";
            }
            this.Hide();
        }