Online PHP editor | refs for ej673

<?php session_start(); ?> <!DOCTYPE html> <html> <head> <meta charset="UTF-8"> <title>Check Login</title> </head> <body> <? $txtUsername =$_POST['txtUsername']; $txtPassword1 =$_POST['txtPassword1']; include("connect.php"); $strSQL = "SELECT * FROM login WHERE username = '".$txtUsername."' and password = '".$txtPassword1."'"; $objQuery = mysql_query($strSQL); $objResult = mysql_fetch_array($objQuery); if(!$objResult) { ?> <script type="text/javascript"> alert("กรุณาตรวจสอบ Username และ Password") </script> <? echo "<META HTTP-EQUIV='Refresh' CONTENT='0; URL=login.php'>"; exit(); } else { $username = $_POST['txtUsername']; ?>  <? $_SESSION['myValue']= $username; $sql = "Select * from login where username='$username' "; echo "<META HTTP-EQUIV='Refresh' CONTENT='0; URL=menu2.php'>"; } mysql_close(); ?> </body> </html>