PHP Playground - login: Online Interpreter, Compiler & Editor

PHP
php
<?php
session_start();
include ('header.php');
?>
<div class="grey lighten-1">
<div class="container">
<br>
    
  <?php
    if (isset($_POST['username'])){
        
        $username = stripslashes($_REQUEST['username']); // removes backslashes
        $username = mysqli_real_escape_string($conn,$username); //escapes special characters in a string
        $password = stripslashes($_REQUEST['password']);
        $password = mysqli_real_escape_string($conn,$password);
        
    //Checking is user existing in the database or not
        $query = "SELECT * FROM `users` WHERE username='$username' and password='".md5($password)."'";
        $result = mysqli_query($conn,$query) or die(mysql_error());
        $rows = mysqli_num_rows($result);
        if($rows==1){
    $_SESSION['username'] = $username;
            header("Location: index.php"); // Redirect user to index.php
            }else{
                
    $error_msg = '
OUTPUT