PHP - Scripting Browser Example Does Not Work For Me

I am trying to generate data similar to a running balance for a checkbook.

My approach (correct me if there is a better method) is to get the balance from the previous record ID and then add/subtract the new value and create a new total balance.

However, I am not havig succes with MAX(id) or last_insert_id  -- is one preferable over the other??

 if($result = mysqli_query($link, $sql)){
    if(mysqli_num_rows($result) > 0){
 $sql = "SELECT MAX(id) FROM persons";
 echo "<br /<br />"; echo $sql;

Please assist.

well.. i have vbulletin 4 forum i try to put video player so if i upload mp4 file so i can play video but sad part is its working only at firefox browser can you help me out .. video code looks like this

 

<vb:if condition="$attachment[attachmentextension] == mp4">
<video width="620" height="540" controls>
  <source src="attachment.php?{vb:raw session.sessionurl}attachmentid={vb:raw attachment.attachmentid}&amp;d={vb:raw attachment.dateline}" type="video/mp4">
  <source src="attachment.php?{vb:raw session.sessionurl}attachmentid={vb:raw attachment.attachmentid}&amp;d={vb:raw attachment.dateline}" type="video/ogg">
Your browser does not support the video tag.
</video>
</vb:if>

pls i really want that put to work in every browser sadly it works only in firefox somehow..

This is my first attemp at a log in system for a website.  Everything seems to work fine until the "successful" IF function near the end.  All I get it an output of "?>" instead of a redirect to the file "login_success.php".  Any help would be GREATLY appreciated!!  Tom


<?php

// Connect to server and select databse.
mysql_connect("localhost", "scripts3_public", "sfj123!")or die("cannot connect");
mysql_select_db("scripts3_sfj")or die("cannot select DB");

// username and password sent from form
$fusername=$_POST['fusername'];
$fpassword=$_POST['fpassword'];

// To protect MySQL injection (more detail about MySQL injection)
$fusername = stripslashes($fusername);
$fpassword = stripslashes($fpassword);
$fusername = mysql_real_escape_string($fusername);
$fpassword = mysql_real_escape_string($fpassword);

$sql="SELECT * FROM `users` WHERE `User name` = '$fusername' AND `Password` = '$fpassword'";
$result=mysql_query($sql);

if(!mysql_num_rows($result))
{echo "No results returned.";}

// Mysql_num_row is counting table row
$count=mysql_num_rows($result);

// If result matched $fusername and $fpassword, table row must be 1 row

if($count==1){

// Register $fusername, $fpassword and redirect to file "login_success.php"
session_register("fusername");
session_register("fpassword");
header("location:login_success.php");
}

else {
echo "Wrong Username or Password";
}

?>

Hi I need to test for XSS attack and aim is to break my own site.

I am using strip_tags to strip all the HTML and tags.

Is there any way for successful XSS  attack even if strip_tags is used.

Hello,   I designed (not coded) a finance application for windows phone 8.1 and one of the features that would be ideal is to copy your login steps in order to access your bank account automatically. Yes this does not sound safe or sane. How do I convince app users to use it?    Anyway, I want this access. My rationale is that, the login information would be stored locally and if my phone was hacked then what's the loss in my login steps being hacked... they would probably be encrypted anyway but...    The goal is to be able to open up a clone browser (eg. within the app) and then every step that you take, enter url, login credentials, security questions, pages accessed... the clone browser remembers and then later on as part of the app's function, it would automatically update your balances. I mean I suppose you could come up with the formulas, cash advance fees, interest rates, etc... but at the same time this doesn't seem to be a fixed thing... eg. hard to keep track and get the exact cent amount... or maybe I'm just bad at math   Some things in mind bitmapping, key strokes, string search, number search...    Anyway scripting came to mind, not sure if php or python but    Any thoughts? 

I have a web portal which is scripted using client side scripting language i.e HTML. I want to create a login page in .php and want the other pages to be in .hmtl.
Can i do so?
I want to do this because i want the login password to be stored in a database. Also I want the password to get encrypted (by either MD5 javascript or OpenSSL ) when user enters it inside the login form.

I cannot create the entire portal in php because my portal makes use of C code. And php doesn't have an interface with C language.

Can a user get directed to a .html page after a secure login from login.php page ?
My main aim is to secure the access to my web portal using a password.

I tried to authenticate the login using javascript where the password was stored in an array. But i feel any one having moderate knowledge can easily break that password.

Any help would be greatly appreciated!!

I'd like to use an application that's not browser based, on Internet Explorer. I've read somewhere that this is possible with a PHP script, but which one? If you can get me on the right track, I'd really appreciate it. Cheers.

Hi..,
I use below method to export data to excel.

header('Content-type: application/ms-excel');
header('Content-Disposition: attachment; filename=abc.xls');

if I run the script from the server. (http://localhost/export.php) it is work. (pop-up window if i want save or open the file)

but if i run the script from the client (http://192.168.1.5/export.php) it is not work. (nothing happen)

any idea how to solve this?

This one requires lots of up front information:

I have a page, for this example that I will call page.php. It takes get parameters, and for this example I'll call the parameter "step". So I have a URL like this: page.php?step=1 This page has a form with an action of page.php?step=1. The code on the page validates the posting information. If the information is bad, it returns the user to page.php?step=1; if it is good, it takes the user to page.php?step=2 via header( "location:page.php?step=2" ). So redirection is done by relative path, not full URLs.
This all works as expected.

Now what I've done is set .htaccess to be HTTPS for this page, via this code:

# Turn SSL on for payments
RewriteCond %{HTTPS} off
RewriteCond %{SCRIPT_FILENAME} \/page\.php [NC]
RewriteRule ^(.*)$ https://%{HTTP_HOST}/$1 [R=301,L]

This works (initially). However, once you try to post the form, it just redirects back to the step=1 version of the page. I really don't know how or why that would be.

I'm not sure how else I can explain this or what other information you may have. But it's frustrating to not get a page working in HTTPS that works in HTTP. Very odd. Any suggestions? (I don't even really know the best location to figure out when/why it's redirecting back to the original page.)

require_once 'includes/upload.class.php';
$upload = new uploads();
$details = $upload->getFileInformation($id);

<?php echo $details['upload_desc']; ?>

then here the class.

require_once 'db.class.php';



class uploads extends database

{

   private $uploadData;

   function uploadFile() {

   public function getFileInformation($id)

   {

      $this->uploadData = $this->readData("uploadfiles", "upload_id", $id);

      return $this->uploadData;

   }


But it wont work!
      

Some of you may have seen one of my many posts about email issues.  Some users don't get them, and I have determined it is probably because we are marked as spam.   We are a service that grades sales team members on their phone skills.  Listening to pre-recorded calls, grading and uploading them to our site, and then another part of our business looks them over and sometimes leaves a message that then get's forwarded to this persons work email.   I have determined there is ways to get marked as spam as default by not having an opt out link.  This is not an option, these sales members employer has opted in, and the emails are going to work related accounts hosted at that employer.  Also, if one of these staff members is not so bright, or disgruntled they may mark us as spam anyways.  The bottom line is that we have very little control over whether we are or are not marked as spam.   So we want to start looking into sending text messages and this is where I start to question how good of an idea this is.   First off, if it was me, and the messages where being sent to a device that my employer did not provide, I would in no way want work related text messages coming to me.  Unless there is a vested interest in getting them.  IE, I'm the boss at this place and am always on the clock.  What if you are on the bottom?  It's just a job for you.   What if it is a pre-paid device, text messages cost money.  What then?  What if they don't even have, or want a cell phone?   The short of it is this.  If I'm at a job that is just another job, and this employer tells me that I have to get these messages.  I'm going to look for another job.  I see the organizations having continuous issues and complaints from their employees.  Thus us as a business having issues keeping clients.   What am I getting into here?  What are your opinions on this matter?  What are your recommendations as to alerting users of something on our site that we can rest assured are being received 100% of the time?   Thanks!   Nick

Hi there, As the question says i tried several things but i can't work it out and my knowledge about php isn't that well.

i need help trying to get this delete feature to work its not deleting from the database (by the way i took out my database names and passwords at the top of the file)

is it possible someone could help me, ive been working on this for like a week and cant figure out the problem. thanks! you can email me at spr_spng@yahoo.com


picture 2.png is showing what it looks like




Code: [Select]
<?php
$host="localhost"; // Host name
$username="username"; // Mysql username
$password="password"; // Mysql password
$db_name="database_name"; // Database name
$tbl_name="table_name"; // Table name

// Connect to server and select databse.
mysql_connect("$host", "$username", "$password")or die("cannot connect");
mysql_select_db("$db_name")or die("cannot select DB");

$sql="SELECT * FROM $tbl_name";
$result=mysql_query($sql);

$count=mysql_num_rows($result);


?>
<style>
/*table affects look of the whole table look */
table {
margin-left: auto;
margin-right: auto;
border: 1px solid #330000;
border-collapse:collapse;
width:70%;

border-width: 5px 5px 5px 5px;
border-spacing: 1px;
border-style: outset outset outset outset;
border-color: #330000 #330000 #330000 #330000;
border-collapse: separate;
background-color: #330000;


#800517

f535aa

#330000 school color
#9A0000 school color2
#991B1E school color3
#CCCC99 school color4
#9A0000

}
/*th is table header */
th {
text-align: left;
height: 2.5em;
background-color: #330000;
color: #FC0;
font-size:1.5em;
}
/*td is table data or the cells below the header*/
td {
text-align: left;
height:1.0em;
font-size:1.0em;
vertical-align:bottom;
padding:10px;

border-width: 5px 5px 5px 5px;
padding: 8px 8px 8px 8px;
border-style: outset outset outset outset;
border-color: #9A0000 #9A0000 #9A0000 #9A0000;
background-color: #CCCC99;
-moz-border-radius: 0px 0px 0px 0px;

}
</style>
<table width="400" border="0" cellspacing="1" cellpadding="0">
<tr>
<td><form name="form1" method="post" action="">
<table width="400" border="0" cellpadding="3" cellspacing="1" bgcolor="#CCCCCC">
<tr>
<td bgcolor="#FFFFFF">&nbsp;</td>
<td colspan="4" bgcolor="#FFFFFF"><strong>Pick Which Rows you want to delete, Then press delete.</strong> </td>
</tr>
<tr>
<td align="center" bgcolor="#FFFFFF"><strong>Id</strong></td>
<td align="center" bgcolor="#FFFFFF"><strong>Name</strong></td>
<td align="center" bgcolor="#FFFFFF"><strong>Lastname</strong></td>
<td align="center" bgcolor="#FFFFFF"><strong>Email</strong></td>
<td align="center" bgcolor="#FFFFFF">delete</td></tr>
<?php
while($rows=mysql_fetch_array($result)){
?>
<tr>
<td bgcolor="#FFFFFF"><? echo $rows['id']; ?></td>
<td bgcolor="#FFFFFF"><? echo $rows['name']; ?></td>
<td bgcolor="#FFFFFF"><? echo $rows['lastname']; ?></td>
<td bgcolor="#FFFFFF"><? echo $rows['email']; ?></td>
<td align="center" bgcolor="#FFFFFF"><input name="checkbox[]" type="checkbox" id="checkbox[]" value="<? echo $rows['id']; ?>"></td>
</tr>
<?php
}
?>
<tr>
<td colspan="5" align="center" bgcolor="#FFFFFF"><input name="delete" type="submit" id="delete" value="Delete"></td>
</tr>
<?
// Check if delete button active, start this // edited
if($delete){
for($i=0;$i<$count;$i++){
$del_id = $checkbox[$i];
$sql = "DELETE FROM $tbl_name WHERE id='$del_id'";
$result = mysql_query($sql);
}

// if successful redirect to delete_multiple.php
if($result){
echo "<meta http-equiv=\"refresh\" content=\"0;URL=delete_multiple.php\">";
}
}
mysql_close();
?>
</table>
</form>
</td>
</tr>
</table>

Hello,   I want to know how they keep the same url when page is changing, if you dont know what i mean try the link and check the browser when you wat happens when you click in a other link in the website.   ( Website Link ( Normal Content ) ) http://geedmo.com/?item=LushSlider   Thanks in advance.

Hey there, I'm trying to set up a little ftp script to make it easier to upload files and add new folders for images and videos ect on a backend admin page however the following script just will not connect I keep getting the "Couldn't connect to 66.40.52.167" error so it's not even finding the server however when I put it into my browser it connects just fine, I've even pinged it and all works fine so I don't get it.


$ftp_server = "66.40.52.167";
$ftp_user = "username";
$ftp_pass = "password";

$conn_id = ftp_connect($ftp_server) or die("Couldn't connect to $ftp_server"); 

if (@ftp_login($conn_id, $ftp_user, $ftp_pass)) {
    echo "Connected as $ftp_user@$ftp_server\n";
} else {
    echo "Couldn't connect as $ftp_user\n";
}


ftp_close($conn_id);  


Any ideas would be appreciated!