On Tue, 14 Jun 2011 00:50:39 -0500 Chris Stinemetz <chrisstinemetz@xxxxxxxxx> wrote: > On Tue, Jun 14, 2011 at 12:31 AM, Chris Stinemetz > <chrisstinemetz@xxxxxxxxx> wrote: > > I created the below delete function, but it doesn't seem to be working > > correctly. When I enter the correct password it get my echo "Incorrect > > Password Did not Delete!" When I leave the password blank the message > > will delete from mysql table. > > > > Am I missing something?? > > $result = mysql_query("SELECT Title, Password FROM mbmsgs WHERE ID > = {$_REQUEST['Msg']};"); > extract(mysql_fetch_array($result), EXTR_PREFIX_ALL, 'msg'); > > if (isset($_POST['Password'])) { > if (sha1($_POST['Password']) != $msg_Password) { > echo "Incorrect password did not delete!"; > exit; > } It sounds like the password is not set in the database. What do you get if you dump the result of your first query? Also, you should avoid extract, it litters your code with dead and untraceable variables. Use $array['msg_Passowrd'] instead. -- Simcha Younger <simcha.younger@xxxxxxxxx> -- PHP Database Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php