php if(isset($userInfo['users_passwd']) && md5($password) == $userInfo['users_passwd']){ $token = bin2hex(openssl_rand_pseudo_bytes(32)); // New token is generated for the user } php $file = urldecode($_GET['file']); if(file_exists($_dir__ . "/" . $file)){ include($_dir__ . "/" . $file); }