PHP - Form Being Double Submitted

Hello everyone, I'm having a difficult time figuring out what my problem is here.  I'm trying to submit a couple of strings (to the user they are messages to be sent to other users) and I am having trouble with the string being cut off at quotation marks.  Here is the code that I'm using:

Code: [Select]
<?php

if (isset($_POST['submit'])) {

$staffmessage = $_POST['staffmessage'];
$studentmessage = $_POST['studentmessage'];

echo "$staffmessage<br />&nbsp<br />$studentmessage";

}

?>

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
</head>

<body>

<?php

$message1="This is a test message.

It does not get cut off here when the \"quotation marks\" are added.";

$message2="This is a test message.

It DOES get cut off here when the \"quotation marks\" are added.";

?>

<form name="form" method="post" action="test.php">

<textarea class="textarea" name="staffmessage" rows="12">

<?php echo $message1; ?>

</textarea></p>

<input name="studentmessage" type="hidden" value="<?php echo $message2; ?>" />

<input class="submit2" type="submit" name="submit" value="Send Message" />

</form>

</body>
</html>

The result that I'm getting is that when $staffmessage is echoed, I get the full message.  When $studentmessage is echoed, the message gets cut off at the first quotation mark.  The only thing that is different when creating these two variables is that $staffmessage is submitted using a "textarea" field in the form, and $studentmessage is submitted using a "hidden" field in the form.  Other than that, they are handled the exact same way.

Can anyone please help me figure out how to remedy this so that $studentmessage is not cut off at the quotation mark?  Thanks in advance for your help!

Hello all,

I am having a bit of trouble with this contact form. Everything submits fine, errors work and all but the information isn't sent to my inbox. Can anyone point out where the problem is? Thanks in advance!

Code: [Select]
if(isset($_POST['Email_Address'])) {

include 'free_settings.php';

function died($error) {
echo "Sorry, but there were error(s) found with the form you submitted. ";
echo "These errors appear below.<br /><br />";
echo $error."<br /><br />";
echo "Please go back and fix these errors.<br /><br />";
die();
}

if(!isset($_POST['Full_Name']) ||
!isset($_POST['Email_Address']) ||
!isset($_POST['Your_Message'])) {
died('We are sorry, but there appears to be a problem with the form you submitted.');
}

$full_name = $_POST['Full_Name']; // required
$email_from = $_POST['Email_Address']; // required
$comments = $_POST['Your_Message']; // required

$error_message = "";
$email_exp = '/^[A-Za-z0-9._%-]+@[A-Za-z0-9.-]+\.[A-Za-z]{2,4}$/';
  if(preg_match($email_exp,$email_from)==0) {
  $error_message .= 'The Email Address you entered does not appear to be valid.<br />';
  }
  if(strlen($full_name) < 2) {
  $error_message .= 'Your Name does not appear to be valid.<br />';
  }
  if(strlen($comments) < 2) {
  $error_message .= 'The Comments you entered do not appear to be valid.<br />';
  }
 
  if(strlen($error_message) > 0) {
  died($error_message);
  }
$email_message = "Form details below.\r\n";

function clean_string($string) {
  $bad = array("content-type","bcc:","to:","cc:","href");
  return str_replace($bad,"",$string);
}

$email_message .= "Full Name: ".clean_string($full_name)."\r\n";
$email_message .= "Email: ".clean_string($email_from)."\r\n";
$email_message .= "Message: ".clean_string($comments)."\r\n";

$headers = 'From: '.$email_from."\r\n".
'Reply-To: '.$email_from."\r\n" .
'X-Mailer: PHP/' . phpversion();
@mail($email_to, $email_subject, $email_message, $headers);
header("Location: $thankyou");
?>
<script>location.replace('<?php echo $thankyou;?>')</script>
<?php

Hi,
 Say I have the situation shown below:  

how can i disply this message withing the form echo "data submitted successfully!";

currently after validation check when data is entered the message show on top of my page not within the form



function insertDATA($postData) {

if(!ifEmailExists($postData['email'])){
$sql = " INSERT INTO tbl SET
email = '".$postData['email']."',
name = '".$postData['name']."',
phone = '".$postData['phone']."'
";
                      echo "data submitted successfully!";//this line withing the form
executeSql($sql);
}

Hi.. all

I have a problem in my web site. There I have created a page call download.php and using it users can download song. I used a form to download button to display download box. after users click on download link i need to cancel it on that page. that mean I want to disappear it on download.php page. now when i click on browser's refresh button that download box still display on page. so any body can i help me to do it..

http://www.mist.lk/d...ad.php?index=52

thanks in advance for any help....

Following is the form.Now i want to see if submit button is pressed or not.Usually if html had

Code: [Select]
<input type="submit" value="Submit" name = "submit" />
i would simply use
Code: [Select]
<?php
if(isset($_POST['submit']))
?>
But below is the form which has an image as a submit button

Form -
Code: [Select]
<form action="" method="post" id="sendemail">
            <ol>
              <li>
                <label for="name">Name (required)</label>
                <input id="name" name="name" class="text" />
              </li>
              <li>
                <label for="email">Email Address (required)</label>
                <input id="email" name="email" class="text" />
              </li>
              <li>
                <label for="email">Phone number</label>
                <input id="phone" name="phone" class="text" />
              </li>
               <li>
                <label for="address">Address(required)</label>
                <input id="address" name="address" class="text" />
              </li>
              <li>
                <label for="city">City(required)</label>
                <input id="city" name="city" class="text" />
              </li>
              <li>
                <label for="state">State(required)</label>
                <input id="state" name="state" class="text"/>
              </li>
               <li>
                <label for="zipcode">Pincode/Zipcode(required)</label>
                <input id="zipcode" name="zipcode" class="text" />
              </li>
              <li>
                <input type="image" name="submit" id="imageField" src="images/submit.gif" class="send" />
                <div class="clr"></div>
              </li>
            </ol>
          </form>   
How should i check if form is submitted or not when instead of submit button there is an image ?

----------------------------------------------------------------- Alternative Solution ----------------------------------------------------------------------------

 I tried sending it to other page but then i had to send an array back to this page and i didn't know how to send that either.I tried
Code: [Select]
<?php
$error = serialize($error);
  echo "<meta http-equiv='refresh' content='0;url=about.php?array=".$error."'> ";
?>
But even after

Code: [Select]
$array = unserialize($array);
$array contained nothing.

Can someone please show me how to send in array in between pages for future ?

Good afternoon,   I was wondering if you could help me out with a few things.  I have created a registration page and it stores the information into my database.  A success page then appears with some of the details they entered as a confirmation page.  Unfortunately I cannot get the information to appear on the page.  I have included some code, any help would be greatly appreciated.   <?php

Hi,

I am working on a registration login system and after a person registers and logs in, they will get the option to upload a profile picture. The picture and registration info will need to be in two different tables. I want to know the best way to associate the two (registration info and photo) so that I know who's picture goes with what registration info? I thought about IP address, but a user might register on one computer and login and upload a photo on another computer. 

If I have a standard HTML form in my PHP script and the User submits the form - which resubmits to itself for processing - and then the User hits the "Back" button and then the "Forward" button, why does the Form and its data get re-submitted?!

What mechanics are exactly happening?

I had a "Submit Payment" page that was doing that and so people would get charged twice and that is obviously a big problem.

Please help me understand what causes that issue and different ways to fix it.

Thanks,


Debbie

Hi all

I have a field in mySQL table called dimensions. It has the double quote in in for inches - "

When I echo the result from the mySQL query on the item page (Customer facing) it's fine. However, I have built a form so that the administrator can edit the dimensions in the admin panel and when I echo it out in to the form field it stops when it gets to the double quotes?

Pete

So I built a form and if anyone puts // in the text area field named Code: [Select]
name="background" it won't work... it fails.

This prevents users from entering website URLs, which is an issue since the form is related to website design.  I think I have everything else working just fine.

Any ideas how I can change this so it will work and allow // ?  There may be other things that cannot be entered or maybe a security risk I am missing... here is the code...

Code: [Select]
<?php

    // version 2.2

    // All placeholders that are used such as {yourEmail@yourDomain.com}, {yourSolve360Token}, {ownership},
    // {categoryId}, {templateId} should be replaced with real values without the {} brackets.

    // REQUIRED Edit with the email address you login to Solve360 with
    define('USER', 'me@me.com');
    // REQUIRED Edit with token, Workspace > My Account > API Reference > API Token                             
    define('TOKEN', 'itentionallydeleted');  
    
    // Get request data
    $requestData = array();
    parse_str($_SERVER['QUERY_STRING'], $requestData);
    
    // Configure service gateway object
    require 'Solve360Service.php';
    $solve360Service = new Solve360Service(USER, TOKEN);
    
    //
    // Preparing the contact data
    //
    
    $contactFields = array(
        // field name in Solve360 => field name as specified in html form
        'firstname' => 'firstname',
        'lastname' => 'lastname',
        'businessemail' => 'businessemail',
        'cellularphone' => 'cellularphone',
        'background' => 'background',
    );
    
    
    // kill form if spammers use the siteURL field
if ( $_GET['url'] != '' || $_GET['firstname'] == 'Your Name' || $_GET['businessemail'] == 'Email Address' ) {header("Location: http://www.openpotion.com/new/error");}   
    
    else {
    $contactData = array(
        // OPTION Apply category tag(s) and set the owner for the contact to a group
        // You will find a list of IDs for your tags, groups and users in Workspace > My Account > API Reference
        // To enable this option, uncomment the following:

       
        // Specify a different ownership i.e. share the item
        'ownership'     => 18634876,

        // Add categories
        'categories'    => array(
            'add' => array('category' => array(18660073))
        ),

    );
    
    
    // adding not empty fields
    
    foreach ($contactFields as $solve360FieldName => $requestFieldName) {
        if ($requestData[$requestFieldName]) {
            $contactData[$solve360FieldName] = $requestData[$requestFieldName];
        }
    }
    
    // 
    // Saving the contact
    //
    // Check if the contact already exists by searching for a matching email address.
    // If a match is found update the existing contact, otherwise create a new one.
    //
    
    $contacts = $solve360Service->searchContacts(array(
        'filtermode' => 'byemail',
        'filtervalue' => $contactData['businessemail'],
    ));
    if ((integer) $contacts->count > 0) {
        $contactId = (integer) current($contacts->children())->id;
        $contactName = (string) current($contacts->children())->name;
        $contact = $solve360Service->editContact($contactId, $contactData);
    } else {
        $contact = $solve360Service->addContact($contactData);
        $contactName = (string) $contact->item->name;
        $contactId   = (integer) $contact->item->id;        
    }

    if (isset($contact->errors)) {
        // Mail yourself if errors occur  
        mail(
            USER, 
            'Error while adding contact to Solve360', 
            'Error: ' . $contact->errors->asXml()
        );
        die ('System error');
    } else {
        // Mail yourself the result
        mail(
            USER, 
            'A new sales lead has been posted to Solve360', 
            'Contact "' . $contactName . '" https://secure.solve360.com/contact/' . $contactId . ' was posted to Solve360',
            'From: noreply@openpotion.com' . PHP_EOL . 'Reply-To: ' . $contactData['businessemail'] . PHP_EOL . 'X-Mailer: PHP/' . phpversion()
        );
    }
    
    //
    // OPTION Adding a activity 
    //
    
    /*
     * You can attach an activity to the contact you just posted
     * This example creates a Note, to enable this feature just uncomment the following request
     *      
     */    
    
   /*
    // Preparing data for the note
    $noteData = array(
        'details' => nl2br($requestData['note'])
    );

    $note = $solve360Service->addActivity($contactId, 'note', $noteData);
    
    // Mail yourself the result
    mail(
        USER, 
        'Note was added to "' . $contactName . '" contact in Solve360',
        'Note with id ' . $note->id . ' was added to the contact with id ' . $contactId
    );
    // End of adding note activity
*/
 
    //
    // OPTION Inserting a template of activities
    //
    
    /*
     * You can also insert a template directly into the contact you just posted
     * You will find a list of IDs for your templates in Workspace > My Account > API Reference
     * To enable this feature just uncomment the following request
     *      
     */

    /*
    // Start of template request
    $templateId = {templateId};
    $template = $solve360Service->addActivity($contactId, 'template', array('templateid' => $templateId));
        
    // Mail yourself the result
    mail(
        USER, 
        'Template was added to "' . $contactName . '" contact in Solve360',
        'Template with id ' . $templateId . ' was added to the contact with id ' . $contactId
    );
    // End of template request
    */
    header("Location: http://www.website.com/thank-you");
    
    }

?>


Thanks a ton in advance!
Jason



[attachment deleted by admin]

Hi there,

I have a newsletter sign up form which just puts the data (id and email) into a mysql table.

To stop people hacking the site, is there a way to make sure the only thing being submitted in the input is an email address?

Here's my current form and submit php:

Code: [Select]
<?php

$mailer = $_GET['mailer'];

if ($mailer == 'added') {

$email=$_POST['email'];

if($email == '') {
echo '<div class="daily_not_submitted"><span style="padding-right:6px;"><img src="https://store.huhmagazine.co.uk/images/cross.jpg"></span>Please fill in all the fields.</div>';
}else {

$sql="INSERT INTO `dailymailer` (`email`) VALUES ('$email');";
$result=mysql_query($sql) or die(mysql_error());

if($result){
echo "<div class='daily_submitted'><span style='padding-right:6px;'><img src='http://www.huhmagazine.co.uk/images/uploaded/checkboxtick.jpg'></span>Thank you.</div>";
}
else {
echo "Error\n";
}
}
}
?>

<div id="sidebarnewsletter">
<form name="mailinglist" method="post" action="?mailer=added">
<input type="text" name="email" class="sidebarnewsletter" placeholder="Enter Your Email Address" />
<input type="submit" class="sidebarnewsletter_button" value="Sign Up">
</form>
<div class="clear"></div>
</div>

I'd like to edit specific parts of a submitted text what is the best way to do this?

For example I get the following text:

[name country] is very cold this time of year.
Because I like the cold I would love to live there [end of line 2]

whole lot more text here until

[name country]   if this text here exists, blabla   [but Germany] is blabla [end of line]

in some cases some more text here

[summary] bla bla     The text in the brackets are words that I already know before it has been submitted.
Getting the words out has been part of my previous script, using preg_match and put them in variables.

I want to put the first portion of the text in a row, if 2nd, 3rd and 4th portion exist, put  them in a row too.

Any ideas?


[edited] I prefer to have these portions cut out and put in a variable.
So I end up having a few variables and can later echo that out in rows
Edited by dde, 18 January 2015 - 04:01 AM.

I am trying to filter characters that get submitted into forms and than database. I have been paying with trim function
$string = $_POST[name];
$newstring = trim($string,"W");
echo "$newstring";

but it does not seem to do what I really need. If I enter name World I do get "orld" back, but what if I want to filter out W (or w) and L (or l) to get "ord".

I am mainly going after removing ' " ; : . > , < - _ ( ) * & ^ % $ # @ ! \ | / ?

I know there is a different way to do it, but it has been long tome since I have seen it, and I do not know where.

Thanks for your help

Hello,

Basically, What I'm looking for would be for a method of blocking certain email addresses from being submitted in a form, I need it to block certain emails that are on the list.

I think the best way to describe it would be a form submission blacklist that is checked before it gets submitted.

Many thanks