PHP - Named Placeholder In Pdo?

Hello im learning php but im getting hard time trying to figure  something out how do you add a placeholder or default image on a php im trying to add image but when i see its all blank where should i put my placeholder for my image ? 

echo '<a rel="facebox" href="editpic.php?id='.$row['id'].'"><img src=../'.$row['ppic'].' width="200" height="200" style="float:left; margin-right:10px;"></a>';
								echo 'Name:'.$row['fname'].' '.$row['mname'].' '.$row['lname'].'<br>';
								echo 'ID Number:'.$row['idnumber'].'<br>';
								echo 'Password:'.$row['password'].'<br>';
								echo 'Gender:'.$row['gender'].'<br>';
								echo 'Birthday:'.$row['bday'].'<br>';
								echo 'Email:'.$row['email'].'<br>';
								echo 'Address:'.$row['address'].'<br>';
								echo 'Age:'.$row['age'].'<br>';
								echo 'yearlevel:'.$row['yearlevel'].'<br>';
								echo 'Section:'.$row['section'].'<br>';
								}
							?>

Edited by Jaymore, 10 August 2014 - 07:05 AM.

Dear members,

I have a self-inflicted problem but i do not know of a proper solution. My site is a subscription based members only website. Some pages are protected pages while others are low security accessible pages. This means that low-security pages only check the session for login. An example of low-security is a news article or press release. PHP on low-security pages just checks the session to see if the user is a logged in member. The low-security pages are accessed via standard hyperlinks with a constant address (e.g., place.ext/News).

Protected pages, on the other hand, are hidden behind a post form which utilizes prg to send the request to the index page (place.ext). The requests are analyzed for tokens, timestamps, referrer, ip address etc. the user is checked in the database and the session data is compared to verify user login status etc. Such a design prevents me from using anchor names to jump to specific places in the page (place.ext#jumplink).

I am trying to figure out a way to still use named anchors. I think that a session variable can be used to store the anchor name for jumping. Then i wonder if i could use javascript to actually make the jump? (document.location perhaps?)

is there someway to use php for this task besides a session variable? has anyone done this before? i cannot think of a simple solution.

Thabk you and Best Wishes.

I have two scripts: script1.php and script2.php.   Script1 creates if it doesn't already exist and adds to a session named "SESSION1" and displays it:   Script2 similarly adds to a session named "SESSION2", but then needs to display the session used by the first script (i.e. SESSION1), and then goes back to its original session (SESSION2).   Script1 works perfect.  But when Script2 is executed, it changes the session ID in the SESSION1 cookie to the same value as used in its SESSION2 cookie.  If Script1 is later executed, it obviously lost its previous session values as it is now using a new session ID.   If I comment out the two session_name() lines, it will not overwrite the other session, however, this doesn't provide the functionality I need.   What is causing this and how do I prevent it????   script1.php

<?php
// script 1.  Will be accessed as http://one.example.com

$t=time();

//Access the primary session for script 1
session_name('SESSION1');
session_start();
$_SESSION['s1_'.$t]=$t;
echo("SESSION1<pre>".print_r($_SESSION,1)."</pre>");
?>

script2.php

<?php
// script 2.  Will be accessed as http://two.one.example.com

$t=time();

//Access the primary session for script 2
$default_name=session_name('SESSION2');
session_start();
$_SESSION['s2_'.(2*$t)]=2*$t;
echo("SESSION2<pre>".print_r($_SESSION,1)."</pre>");

//Use session created by script 1
$old_id_script2 = session_id();
session_write_close();
$old_name_script2 = session_name('SESSION1');
session_start();
echo("SESSION1<pre>".print_r($_SESSION,1)."</pre>");

//Go back to primary session
session_write_close();
$old_id_script1 = session_id($old_id_script2);
$old_name_script1 = session_name($old_name_script2);
session_start();
echo("SESSION2<pre>".print_r($_SESSION,1)."</pre>");

echo("default_name: $default_name<br>");
echo("old_id_script2: $old_id_script2<br>");
echo("old_name_script2: $old_name_script2<br>");
echo("old_id_script1: $old_id_script1<br>");
echo("old_name_script1: $old_name_script1<br>");
?>

Edited by NotionCommotion, 30 November 2014 - 11:45 AM.

Hi Guys, I am new to this forum. I have tried other forums but with no success. I hope you can answer me.

Project: Job Application Form along with CV upload.
Backend: MySQL.
Problem: When the form is submitted, it replaces the same named file in my server.
Example: When I upload a file named "Example.doc" using this form and if there is already a file named "Example.doc" in the same directory (Server), the new file (example.doc) will replace the old one.
Solution Required: May be,
                              a) When I upload a file, the file name gets renamed with say the personsname+DOB+timestamp.
                              b) Any other solution which will not delete the old files present.

I am pasting the PHP code that I used .... for your kind perusal. Please help:

<?php


// Receiving variables
@$pfw_ip= $_SERVER['REMOTE_ADDR'];
@$Name = addslashes($_POST['Name']);
@$Telephone = addslashes($_POST['Telephone']);
@$Email = addslashes($_POST['Email']);
@$Mobile = addslashes($_POST['Mobile']);
@$CITY = addslashes($_POST['CITY']);
@$OtherLocation = addslashes($_POST['OtherLocation']);
@$PostalAddress = addslashes($_POST['PostalAddress']);
@$Years = addslashes($_POST['Years']);
@$Months = addslashes($_POST['Months']);
@$Lacs = addslashes($_POST['Lacs']);
@$Thousands = addslashes($_POST['Thousands']);
@$FunctionalArea = addslashes($_POST['FunctionalArea']);
@$CurrIndustry = addslashes($_POST['CurrIndustry']);
@$KeySkills = addslashes($_POST['KeySkills']);
@$ResumeTitle = addslashes($_POST['ResumeTitle']);
@$JobID = addslashes($_POST['JobID']);
@$TenthUniv = addslashes($_POST['TenthUniv']);
@$TenthPer = addslashes($_POST['TenthPer']);
@$TwlUniv = addslashes($_POST['TwlUniv']);
@$TwlPer = addslashes($_POST['TwlPer']);
@$UGCOURSE = addslashes($_POST['UGCOURSE']);
@$GradPer = addslashes($_POST['GradPer']);
@$PGCOURSE = addslashes($_POST['PGCOURSE']);
@$PPGCOURSE = addslashes($_POST['PPGCOURSE']);
@$course1 = addslashes($_POST['course1']);
@$course2 = addslashes($_POST['course2']);
@$course3 = addslashes($_POST['course3']);
@$Gender = addslashes($_POST['Gender']);
@$DOB = addslashes($_POST['DOB']);
@$Nationality = addslashes($_POST['Nationality']);
@$select2 = addslashes($_POST['select2']);
@$file_Name = $_FILES['file']['name'];
@$file_Size = $_FILES['file']['size'];
@$file_Temp = $_FILES['file']['tmp_name'];
@$file_Mime_Type = $_FILES['file']['type'];

function RecursiveMkdir($path)
 {
   if (!file_exists($path))
   {
      RecursiveMkdir(dirname($path));
      mkdir($path, 0777);
    }
  }


// Validation
if( $file_Size == 0)
{
die("<p align='center'><font face='Arial' size='3' color='#FF0000'>Please enter a valid file</font></p>");
}
if( $file_Size >50000000)
{
//delete file
unlink($file_Temp);
die("<p align='center'><font face='Arial' size='3' color='#FF0000'>Please enter a valid file</font></p>");
}
if( $file_Mime_Type != "application/msword" AND $file_Mime_Type != "application/pdf" AND $file_Mime_Type != "application/rtf" )
{
unlink($file_Temp);
die("<p align='center'><font face='Arial' size='3' color='#FF0000'>Please enter a valid file</font></p>");
}
$uploadFile =  $file_Name ;
if (!is_dir(dirname($uploadFile)))
  {
    @RecursiveMkdir(dirname($uploadFile));
  }
else
  {
  @chmod(dirname($uploadFile), 0777);
  }
@move_uploaded_file( $file_Temp , $uploadFile);
chmod($uploadFile, 0644);
$file_URL = "http://www.myserver.com/resume/".$file_Name ;

//saving record to MySQL database


@$pfw_strQuery = "INSERT INTO `Candidate_Test`(`Name`,`tel`,`email`,`mob`,`city`,`othr`,`add`,`yrs`,`mon`,`lacs`,`thnd`,`func`,`curr`,`skills`,`title`,`Jobid`,`tenb`,`tenp`,`twlb`,`twlp`,`ugb`,`ugp`,`pg`,`ppg`,`c1`,`c2`,`c3`,`gen`,`dob`,`nation`,`pref`,`file`)VALUES (\"$Name\",\"$Telephone\",\"$Email\",\"$Mobile\",\"$CITY\",\"$OtherLocation\",\"$PostalAddress\",\"$Years\",\"$Months\",\"$Lacs\",\"$Thousands\",\"$FunctionalArea\",\"$CurrIndustry\",\"$KeySkills\",\"$ResumeTitle\",\"$JobID\",\"$TenthUniv\",\"$TenthPer\",\"$TwlUniv\",\"$TwlPer\",\"$UGCOURSE\",\"$GradPer\",\"$PGCOURSE\",\"$PPGCOURSE\",\"$course1\",\"$course2\",\"$course3\",\"$Gender\",\"$DOB\",\"$Nationality\",\"$select2\",\"$file_Name\")" ;
@$pfw_host = "localhost";
@$pfw_user = "testuser";
@$pfw_pw = "ultimate09";
@$pfw_db = "Resumebank";
$pfw_link = mysql_connect($pfw_host, $pfw_user, $pfw_pw);
if (!$pfw_link) {
 die('Could not connect: ' . mysql_error());
}
$pfw_db_selected = mysql_select_db($pfw_db, $pfw_link);
if (!$pfw_db_selected) {
die ('Can not use $pfw_db : ' . mysql_error());
}

//insert new record
$pfw_result = mysql_query($pfw_strQuery);
if (!$pfw_result) {
 die('Invalid query: ' . mysql_error());
}
mysql_close($pfw_link);

 echo("<p align='center'><font face='Arial' size='3' color='#FF0000'>Successful</font></p>");
?>

 --------
PLEASE HELP. URGENTLY REQUIRED!!!!

Sourav Sengupta

Hey, friends.  I have some trouble on the server front.  My sites have been hacked, and I need to make sure I've eradicated every trace of this exploit.  I'm looking for a way to search for any and all php files contained in multiple directories with specific names.  For instance, I have found a commonality in relation to where these malicious files are placed, such as:
Code: [Select]
/some/dir/img/somename.phpor:
Code: [Select]
/some/dir/js/somename.php
Is there a way I can easily (e.g. using ssh and the "find" command) locate all files ending in php but only found in directories named "img"?  I can't seem to find anything that would allow me to do this with find, or with a combination of find and grep.  I can't go directory by directory, as some of these img directories are created many levels deep, some even in .svn directories. 

Any and all help is appreciated.  Hackers suck.