diff --git a/modules/billing/login.php b/modules/billing/login.php
index f15531eb..6d64b852 100644
--- a/modules/billing/login.php
+++ b/modules/billing/login.php
@@ -82,7 +82,7 @@ if ($_SERVER['REQUEST_METHOD'] === 'POST') {
         $debug_messages[] = 'missing username or password';
     } else {
         $safe = mysqli_real_escape_string($db, $username);
-        $sql = "SELECT user_id, users_login, users_passwd, users_pass_hash, users_role, users_lang, users_theme FROM {$table_prefix}users WHERE users_login = '$safe' LIMIT 1";
+        $sql = "SELECT * FROM {$table_prefix}users WHERE users_login = '$safe' LIMIT 1";
         $debug_messages[] = 'SQL: ' . $sql;
         $res = mysqli_query($db, $sql);
         if ($res && mysqli_num_rows($res) === 1) {