//if user inputted password is not equal to the saved password then it's incorrect		  
if (password[cnt2] != passINP[cnt2]);	 <- This semicolon is erroneous...my bad guys!
{
flag = 0;
}