PHP - Php Not Displaying Properly

Okay, so I am trying to make a play.php file connected to my database, this database got a table named "webclientcreate".

When I go to play.php?id=1, it is showing the proper one (the 1st row wich got id 1 in it), however if I after that go to something random like play.php?fsfasd the ID 1s page still pops up..
I can also go to play.php?id=2 and still get the id 1's data.

I want to make it that every row got its own information (well it does, but the php file doesnt seem to recieve it correctly).

PHP version: 5.2.17
MySQL version: 5.1

Heres a picture of my table rows:


I've censored the MySQL connection information, I know it is working properly.

Code: [Select]
<?php

$connect = mysql_connect("mysql12.000webhost.com","****","******") or die(mysql_error());
mysql_select_db("***") or die(mysql_error());


$extract = mysql_query("SELECT * FROM webclientcreate");
$numrows = mysql_num_rows($extract);

while ($row = mysql_fetch_assoc($extract))
{
$id = $row['id'];
$server = $row['name'];
$ip   = $row['ip'];
$port = $row['port'];
$background = $row['background'];
}
if (isset($ip)&&isset($port)&&!empty($ip)&&!empty($port)) {

if (! $sock = @fsockopen($ip, $port, $num, $error, 1)) 
echo "";
else{ 
echo "<img src='fs/newyear/online.png'/>$ip on port $port is currently<B><FONT COLOR=lime> Online</b></FONT>"; 
fclose($sock);
}

}

?>
 <title>Playing <?php echo $server; ?> - ID <?php echo $id; ?> </title>

 <center>
 <body bgcolor="#000000">

 <applet name=client width=765 height=503 archive='<?php echo $jars; ?>' code='client.class'>

 <PARAM name='java_arguments' value='-Xmx700m'>

 <PARAM name='server_name' value='<?php echo $server; ?>'>

 <PARAM name='detail' value='low'>

 <PARAM name='ip' value='<?php echo $ip; ?>'>

 <PARAM name='port' value='<?php echo $port; ?>'>

 <PARAM name='background_image' value='<?php echo $background; ?>'>

 <PARAM name='headicons' value=''>

 </applet>
 </center>

Hi there, I have created an email script and i want it to email a different email depending on the subject chosen by raido boxes however the if's aren't doing what they should, If i select say recruitement it choses the last option and has the wrong subject here is my code:
<html>
<head>
</head>
<body>
<form action="contact.php" method="post">
<fieldset>
<legend>Contact Us</legend>
Your Email:*<br>
<input type="text" name="email"><br>
Subject:*<br>
Recruitment Enquiry:<input type="radio" name="subject" value="Recruitment">
Absense Notification:<input type="radio" name="subject" value="Absense">
General Enquiry<input type="radio" name="subject" value="Enquiry">
<br>
Message:*<br>
<textarea name="message" cols="50" rows="5"></textarea><br>

<input type="submit" value="Send Email">
</form>
Required fields are marked with a *<br><br>
<?php
if(isset($_POST))
{
$email = $_POST['email'];
$subject = $_POST['subject'];
$message = $_POST['message'];

//checcking that all relevent information is entered and correct

if(!$email || !$message)
{
$errmessage ="Please fill in all required fields.";
}
if($subject="Recruitment")
{
$to="email1";
}
if($subject="Notification")
{
$to="email2k";
}
if($subject="Enquiry")
{
$to="email3";
}
//Sending the email if nothing is wrong

if(!$errmessage)
{
header("location:send.php?to=".$to."&subject=".$subject."&email=".$email."&message=".$message."");
}else{
echo $errmessage;
}
}
?>
</body>
</html>
If anyone can help it would be greatly appriciated

Thanks,

blink359

So here is a concept of a permission system that I haven't really seen any where else. Now usually conventional permissions are usually stored in columns whilst the record specifies a bit which is then used to determine if the record has access to that permission. Below is my concept of how permissions should be done, I'm looking for someone who can help me create the system in a way which would be easily implementable by other applications such as MyBB. In my case I have multiple game servers, and most of my players have accounts created on my forums which are powered by MyBB, I'm currently in the process of integrating their MyBB accounts across all my related game servers, but one thing I've noticed is that I have multiple permission systems created for all of my servers so right now I'm also trying to integrate all of them into one system so please try and understand that I designed this system in a way that could be used by multiple applications.    Any constructive criticism is accepted.  
 
So the idea is that you have 1 table, I'll just list it here to make it easier to follow:

- uniperms_nodes

 
Now the uniperms_nodes table will contain the following columns:

- key (Int, Not Null, Primary Key, Auto Increment)
- type (Enum('USER', 'GROUP'), Not Null)
- id (Int, Not Null)
- permission (Varchar(255), Not Null)
- description (Text)

Now here is how it works,
a record is inserted into the uniperms_nodes table containing the necessary information. Here is an example:

INSERT INTO `uniperms_nodes` (`type`, `id`, `permission`, `description`) 
VALUES ('GROUP', '1', 'my.test.node', 'A simple permission');

 
With this information inserted, I can simply use the following query in order to get all of the permissions related to the GROUP with the ID of 1.

SELECT `permission` FROM `uniperms_nodes`
WHERE type='GROUP' AND id=1;

With this array of permission nodes I can simply just check if the array has 'my.test.node', if the array contains 'my.test.node' then that means that the group I queried has access to that permission.   Now the reason I have the types USER and GROUP is because maybe you would like to give permissions to individual users, but maybe you wouldn't necessarily want to create a new group.           I'm currently looking for someone to help me create a lovely interface for this system, so that it's easier for the user to modify a group/user's permissions. If you're interested feel free to message me here on the forums or via email. kieron.wiltshire@outlook.com
Edited by KieronWiltshire, 19 November 2014 - 11:15 AM.

I was curious..  I read that after using a PDO connection you should set the object to null to close it out.  In this instance:

Code: [Select]
function IsOwner($regionid, $user) {
  global $Username, $SQL_Server, $SQL_User, $SQL_Pass;
  $pdo = new PDO("mysql:host=$SQL_Server;dbname=$SQL_Database", $SQL_User, $SQL_Pass);
  $sql = $pdo->prepare("SELECT count(region_id) FROM region_players WHERE region_id = ? AND user_id = ? AND owner = 1"); $sql->execute(array($regionid, $user));
  if ($sql->rowCount() == 0) { return false; } else { return true; }
  $pdo = null;
}

Since the return is called prior to the nulling, does it leave a connection hanging or does PHP do some sort of auto-closeout when a function ends?  Should I instead be doing:

Code: [Select]
function IsOwner($regionid, $user) {
  global $Username, $SQL_Server, $SQL_User, $SQL_Pass;
  $ownerstatus = false;
  $pdo = new PDO("mysql:host=$SQL_Server;dbname=$SQL_Database", $SQL_User, $SQL_Pass);
  $sql = $pdo->prepare("SELECT count(region_id) FROM region_players WHERE region_id = ? AND user_id = ? AND owner = 1"); $sql->execute(array($regionid, $user));
  if ($sql->rowCount() > 0) $ownerstatus = true;
  $pdo = null;  return $ownerstatus;
}

?

For the life of me, I cannot get an uploaded file to move from the tmp folder to the uploads folder. I have made sure all permissions were set to allow for the transfer. $upfile points to the right folder and file.

print_r($_FILES); yields the following:

Array ( [userfile] => Array ( [name] => 02.jpg [type] => image/jpeg [tmp_name] => /tmp/phpClFyXP [error] => 0 [size] => 121200 ) )

Any help would be greatly appreciated.

HTML:
Code: [Select]
<html>
<head></head>
<body>

   <form enctype="multipart/form-data" action="upload.php" method="POST">
     <input type="hidden" name="MAX_FILE_SIZE" value = "2000000000">
     Upload this file: <input name ="userfile" type="file">
     <input type="submit" value="Send File">
   </form>

</body>

</html>
PHP:
<html>

<head>

  <title>Uploading...</title>

</head>

<body>

<h1>Uploading file...</h1>

<?php



  if ($_FILES['userfile']['error'] > 0)

  {

    echo 'Problem: ';

    switch ($_FILES['userfile']['error'])

    {

      case 1:  echo 'File exceeded upload_max_filesize';  break;

      case 2:  echo 'File exceeded max_file_size';  break;

      case 3:  echo 'File only partially uploaded';  break;

      case 4:  echo 'No file uploaded';  break;

    }

    exit;

  }

  

  // Does the file have the right MIME type?





  // put the file where we'd like it

  $upfile = '/timporn/uploads/'.$_FILES['userfile']['name'];
  echo $upfile;


  if (is_uploaded_file($_FILES['userfile']['tmp_name'])) 

  {

     if (!move_uploaded_file($_FILES['userfile']['tmp_name'], $upfile))

     {

        echo '<br>Problem: Could not move file to destination directory';

        exit;

     }

  } 

  else 

  {

    echo 'Problem: Possible file upload attack. Filename: ';

    echo $_FILES['userfile']['name'];

    exit;

  }





  echo 'File uploaded successfully<br><br>'; 



  // reformat the file contents

  $fp = fopen($upfile, 'r');

  $contents = fread ($fp, filesize ($upfile));

  fclose ($fp);

 

  $contents = strip_tags($contents);

  $fp = fopen($upfile, 'w');

  fwrite($fp, $contents);

  fclose($fp);



  // show what was uploaded

  echo 'Preview of uploaded file contents:<br><hr>';

  echo $contents;

  echo '<br><hr>';



?>

</body>

</html>

Hi, I'm having problems with a PHP mail handler and everything seems to be working fine except I get slashes in the message body from the form. If my input is "Please don't delete this" I get "Please don/'t delete this" in the message body, however it is striping the other tags. I'm not sure what is wrong and was hoping for a bit of help to figure this out.

Here is the code:
Code: [Select]
<?php
$owner_email = $_POST["owner_email"];
$headers = 'From:' . $_POST["email"];
$subject = 'Website contact inquiry from ' . $_POST["name"];
$messageBody = "";

$messageBody .= '<p>------------------ Contact Details ------------------' . '</p>' . "\n";
$messageBody .= '<p>Name: ' . $_POST["name"] . '</p>' . "\n";
$messageBody .= '<p>Email Address: ' . $_POST['email'] . '</p>' . "\n";
$messageBody .= '<p>Phone Number: ' . $_POST['phone'] . '</p>' . "\n";
$messageBody .= '<p>----------------------------------------------------------' . '</p>' . "\n";
$messageBody .= '<br>' . "\n";
$messageBody .= '<p>' . $_POST['message'] . '</p>' . "\n";

if($_POST["stripHTML"] == 'true'){
$messageBody = strip_tags($messageBody);
}

try{
if(!mail($owner_email, $subject, $messageBody, $headers)){
throw new Exception('mail failed');
}else{
echo 'mail sent';
}
}catch(Exception $e){
echo $e->getMessage() ."\n";
}
?>

hello..

In this script. if part is working properly. but elseif part not working i expect. it display only 1 category and its subjects.

Anybody can tell me what the mistake that I have did...

Here is my script

Code: [Select]
} elseif ( isset($_POST['category']) && ( sizeof( $_POST['category']) == 2 || sizeof( $_POST['category']) == 3 )) {

$q = 'SELECT * FROM category ORDER BY category_id';
$r = mysqli_query( $dbc, $q);

while($row = mysqli_fetch_array( $r, MYSQLI_ASSOC  )) {

foreach( $category as $value ) {

if ( $value == $row['category_id']) {

echo '<input type="radio" name="category[]" value="' . $row['category_id'] . '" class="radio" />';
echo '<label for="" class="radio">&nbsp;&nbsp;' . $row['category_name'] . ' <strong>: Mark this category as my "Main Category"</strong></label><br />';

$q = "SELECT category_subject.category_id, category_subject.subject_id, subjects
FROM category_subject
INNER JOIN category ON category_subject.category_id = category.category_id
INNER JOIN subject ON category_subject.subject_id = subject.subject_id
WHERE category_subject.category_id = {$row['category_id']}";

$r = mysqli_query( $dbc, $q);

$c = $i = 0;

echo '<table class="form_table" ><tr>';

while($info = mysqli_fetch_array( $r, MYSQLI_ASSOC  )){

// if remainder is zero after 2 iterations (for 2 columns) and when $c > 0, end row and start a new row: 
if( ($c % 2) == 0 && $c != 0){
echo "</tr><tr>";
}

echo '<td width="50%"><input type="checkbox" name="category[]"  value="' . $info['subject_id'] . '" />&nbsp;&nbsp;' . $info['subjects'] . '</td>';

$c++;

} // while..
// in case you need to fill a last empty cell:
if ( ( $i % 2 ) != 0 ){

// str_repeat() will be handy when you want more than 2 columns
  echo str_repeat( "<td>&nbsp;</td>", ( 2 - ( $i % 2 ) ) );
}
echo "</tr></table>";
}
}
}
}

Hi everyone,

my contact us form and script isn't working how it should.

On send the data is not sent to the db, a () is the ONLY thing shown in the browser too, can somebody help make this work?

Heres the form:

Code: [Select]
<form method="get" action="contact-send.php">
Name:<br />
<input type="text" name="name" id="name" size="30" /><br />
Email:<br />
<input type="email" name="email" id="email" size="30" /><br />
Your Question:<br />
<textarea name="question" id="question" rows="10" cols="50"></textarea><br />
<input type="submit" name="submit" value="send" />
</form

And the script to process:

Code: [Select]
<?PHP
 session_start();
 include ('php only scripts/db.php');


if ($db_found) {

$SQL = "INSERT INTO 'contact_us' (name, email, question)
VALUES ('" .$name. "', '" .$email. "', '" .$question. "')";
$result = mysql_query($query) or die(mysql_error());



header( 'Location: http://www.removalspace.com/contactconf.php' );


}
?>



Iv'e messed with it and had database NOT found before but since then, messed some more and before i go in circles i need some help :|

Thanks in advance for any help!

Why is my code below not working properly? I've tried it with == instead of = and it still doesn't work. I've verified using echo statements that $row['name'] = $_POST['name'] and $row['password'] = $_POST['password'] for one of the people in my database, but it still gives the message "Login or password wrong!"

Thanks a lot for any help, here is the relevant part of my code (counterInt is defined to be 0 further up):

while($row = mysql_fetch_array( $result )) {
   


   if($row['name'] = $_POST['name'] &

$row['password'] = $_POST['password']) {
   $counterInt++;
   session_start();
   $_SESSION['name']=$row['name'];

}

   
}



if(counterInt == 1) {
   header( 'Location:

http://simbazeviangame.99k.org/game.php' );
}

if(counterInt == 0) {
   echo "Login or password wrong!";
}

why aint this working??

Code: [Select]
<?php
                                if ($_COOKIE['watch_id']){
                                    $cookie = $_COOKIE['watch_id'];
                                    $cookie_query = mysql_query("SELECT * FROM user WHERE cookie='$cookie'");
                                    if (mysql_num_rows($cookie_query) >= 1){
                                    ?>
                                    <li><a href="/index.php">Home</a></li>
                                    <li><a href="/cpanel.php">C-Panel</a></li>
                                    <li><a href="/logout.php">Logout</a></li>
                                    pass
                                    <?php   
                                    }
                                    if (mysql_num_rows($cookie_query) <= 1){
                                    ?>
                                    <li><a href="register.php">Register</a></li>
                                    <li><a href="#" onclick="OPEN_login();">Login</a></li>
                                    <li><a href="index.php">Home</a></li>
                                   fail1
                                    <?php
                                    }
                                }
                                
                                if(!$_COOKIE['watch_id']){
                                ?>
                                <li><a href="register.php">Register</a></li>
                                <li><a href="#" onclick="OPEN_login();">Login</a></li>
                                <li><a href="/index.php">Home</a></li>
                                fail2
                                <?php
                                }
                                ?>

i have checked in the browser and the cookies match but it always echos fail2 which means that this line is returning false:

Code: [Select]
if ($_COOKIE['watch_id']){

i have tried using isset but that didnt help either!

any help?

This is the first time Im trying to use REGEXP, but cant get it working. It gives no error, just nothing..Anyone got idea why, please? Thanks

<?php
                  include ('connectToDatabase.php');
                  
                  $getSearch = $_REQUEST['getSearch'];
                  
                  $keywordSearchQuery = "SELECT shoeName, shoeSize, colour, price, gender, description WHERE
                  shoeName REGEXP '.*($getSearch).*' ||
                  shoeSize REGEXP '.*($getSearch).*' ||
                  colour REGEXP '.*($getSearch).*' ||
                  price REGEXP '.*($getSearch).*' ||
                  gender REGEXP '.*($getSearch).*' ||
                  description REGEXP '.*($getSearch).*"
                  ;
                  
                  $keywordSearchQueryResult = mysql_query($keywordSearchQuery);
                  
                  echo "$keywordSearchQueryResult";
               ?>

Hi,
Struggling to find the problem just getting page is not redirecting properly from browser

Code: [Select]
<?php

function seoclean_ad( $uc_string )
{
    $seo_clean_string = strtolower( "{$uc_string}" );
    $seo_clean_string = str_replace( " ", "_".SS_SEOSPREP."", "{$seo_clean_string}" );
    $seo_clean_string = str_replace( "&", "and", "{$seo_clean_string}" );
    $seo_clean_string = preg_replace( "[^A-Za-z0-9_-]", "", $seo_clean_string );
    $seo_clean_string = "{$seo_clean_string}".SEO_SUFFIX."";
    return $seo_clean_string;
}

function prepare_template_output( $data )
{
    if ( is_array( $data ) )
    {
        $ret = array( );
        foreach ( $data as $key => $value )
        {
            $ret[$key] = prepare_template_output( $value );
        }
        return $ret;
    }
    if ( !is_numeric( $data ) )
    {
        $data = stripslashes( $data );
        $data = trim( $data );
        $data = htmlentities( $data );
    }
    return $data;
}

function ukDate( $inDate )
{
    global $outDate;
    list( $uYear, $uMonth, $uDay ) = explode( "-", "{$inDate}" );
    $outDate = "{$uDay}-{$uMonth}-{$uYear}";
    return $outDate;
}

function write_cache( $f_cache_data, $f_cache_file )
{
    if ( !( $fp = fopen( $f_cache_file, "w" ) ) )
    {
        trigger_error( "Error opening cache file" );
        exit( );
    }
    if ( !flock( $fp, LOCK_EX ) )
    {
        trigger_error( "Unable to lock file" );
        exit( );
    }
    if ( !fwrite( $fp, serialize( $f_cache_data ) ) )
    {
        trigger_error( "Error writing to cache file" );
        exit( );
    }
    flock( $fp, LOCK_UN );
    fclose( $fp );
}

function read_cache( $f_cache_file )
{
    if ( !file_exists( $f_cache_file ) )
    {
        trigger_error( "Invalid cache file" );
        exit( );
    }
    return unserialize( file_get_contents( $f_cache_file ) );
}

function list_options( $arrayname, $mode )
{
    global $row;
    global $row_2;
    $sarray = "";
    foreach ( $arrayname as $v )
    {
        if ( !isset( $row['salutation'] ) && $row['salutation'] == $v || isset( $row_2['salutation'] ) && $row_2['salutation'] == $v )
        {
            if ( !isset( $mode ) )
            {
                echo "<option value=\"".$v."\" selected>{$v}</option>\n";
            }
            else
            {
                $sarray .= "<option value=\"".$v."\" selected>{$v}</option>\n";
            }
        }
        else if ( !isset( $mode ) )
        {
            echo "<option value=\"".$v."\">{$v}</option>\n";
        }
        else
        {
            $sarray .= "<option value=\"".$v."\">{$v}</option>\n";
        }
    }
    return $sarray;
}

function genprevnext( $total_pages, $position, $nresults, $scriptis, $extras )
{
    global $shopurl;
    global $seoFriend;
    global $connection;
    global $instdir;
    global $smode;
    if ( !empty( $smode ) )
    {
        $smodebits = "{$smode}/";
    }
    else
    {
        $smodebits = "";
    }
    if ( !empty( $_GET['smode'] ) )
    {
        $smodebits = "".htmlentities( $_GET['smode'] )."/";
    }
    else
    {
        $smodebits = "";
    }
    $disppages = intval( $total_pages / $nresults );
    if ( $total_pages % $nresults )
    {
        ++$disppages;
    }
    if ( $nresults <= $position )
    {
        $current_page_num = $position / $nresults + 1;
    }
    else
    {
        $current_page_num = 1;
    }
    $limit = $nresults;
    $stages = 3;
    $position = $position;
    $page = $position / $nresults + 1;
    if ( $page )
    {
        $start = ( $page - 1 ) * $limit;
    }
    else
    {
        $start = 0;
    }
    if ( $page == 0 )
    {
        $page = 1;
    }
    $prev = $page - 1;
    $next = $page + 1;
    $lastpage = ceil( $total_pages / $limit );
    $LastPagem1 = $lastpage - 1;
    $paginglinks = "";
    if ( 1 < $lastpage )
    {
        if ( 1 < $page )
        {
            $prevoffset = $position - $nresults;
            $paginate .= "<a href=\"".$scriptis."?position={$prevoffset}&nresults={$nresults}{$extras}\">&laquo; Prev</a>";
        }
        else
        {
            $paginate .= "<span class='pagination-disabled'>&laquo; Prev</span>";
        }
        if ( $lastpage < 7 + $stages * 2 )
        {
            $counter = 1;
            for ( ;  
 
 $counter <= $lastpage; ++$counter )
                {
                    $newoffset = $counter * $limit - $limit;
                    if ( $counter == $page )
                    {
                        $paginglinks .= "<span class=\"pagination-current\">".$counter."</span>";
                    }
                    else
                    {
                        $paginglinks .= "<a href=\"".$scriptis."?position={$newoffset}&nresults={$nresults}{$extras}\">{$counter}</a>";
                    }
                    break;
                }
            } while ( 1 );
        }
        else if ( 5 + $stages * 2 < $lastpage )
        {
            if ( $page < 1 + $stages * 2 )
            {
                $counter = 1;
                for ( ; $counter < 4 + $stages * 2; ++$counter )
                {
                    $newoffset = $counter * $limit - $limit;
                    if ( $counter == $page )
                    {
                        $paginglinks .= "<span class=\"pagination-current\">".$counter."</span>";
                    }
                    else
                    {
                        $paginglinks .= "<a href=\"".$scriptis."?position={$newoffset}&nresults={$nresults}{$extras}\">{$counter}</a>";
                    }
                }
                $paginglinks .= "...";
                $newoffsetlm1 = $LastPagem1 * $limit - $limit;
                $newoffsetlp = $lastpage * $limit - $limit;
                $paginglinks .= "<a href=\"".$scriptis."?position={$newoffsetlm1}&nresults={$nresults}{$extras}\">{$LastPagem1}</a>";
                $paginglinks .= "<a href=\"".$scriptis."?position={$newoffsetlp}&nresults={$nresults}{$extras}\">{$lastpage}</a>";
            }
            else if ( $page < $lastpage - $stages * 2 && $stages * 2 < $page )
            {
                $paginglinks .= "<a href=\"".$scriptis."?position=0&nresults={$nresults}{$extras}\">1</a>";
                $paginglinks .= "<a href=\"".$scriptis."?position={$limit}&nresults={$nresults}{$extras}\">2</a>";
                $paginglinks .= "...";
                $counter = $page - $stages;
                for ( ; $counter <= $page + $stages; ++$counter )
                {
                    $newoffset = $counter * $limit - $limit;
                    if ( $counter == $page )
                    {
                        $paginglinks .= "<span class=\"pagination-current\">".$counter."</span>";
                    }
                    else
                    {
                        $paginglinks .= "<a href=\"".$scriptis."?position={$newoffset}&nresults={$nresults}{$extras}\">{$counter}</a>";
                    }
                }
                $paginglinks .= "...";
                $newoffsetlm1 = $LastPagem1 * $limit - $limit;
                $newoffsetlp = $lastpage * $limit - $limit;
                $paginglinks .= "<a href=\"".$scriptis."?position={$newoffsetlm1}&nresults={$nresults}{$extras}\">{$LastPagem1}</a>";
                $paginglinks .= "<a href=\"".$scriptis."?position={$newoffsetlp}&nresults={$nresults}{$extras}\">{$lastpage}</a>";
            }
            else
            {
                $paginglinks .= "<a href=\"".$scriptis."?position=0&nresults={$nresults}{$extras}\">1</a>";
                $paginglinks .= "<a href=\"".$scriptis."?position={$limit}&nresults={$nresults}{$extras}\">2</a>";
                $paginglinks .= "...";
                $counter = $lastpage - ( 2 + $stages * 2 );
                for ( ; $counter <= $lastpage; ++$counter )
                {
                    $newoffset = $counter * $limit - $limit;
                    if ( $counter == $page )
                    {
                        $paginglinks .= "<span class=\"pagination-current\">".$counter."</span>";
                    }
                    else
                    {
                        $paginglinks .= "<a href=\"".$scriptis."?position={$newoffset}&nresults={$nresults}{$extras}\">{$counter}</a>";
                    }
                }
            }
        }
        $paginate .= $paginglinks;
        if ( $page < $counter - 1 )
        {
            $newoffset = $position + $nresults;
            $paginate .= "<a href=\"".$scriptis."?position={$newoffset}&nresults={$nresults}{$extras}\">Next &raquo;</a>";
        }
        else
        {
            $paginate .= "<span class=\"pagination-disabled\">Next &raquo;</span>";
        }
    }
    if ( $nresults < $total_pages )
    {
        echo $paginate;
    }


function buildCategorySelect( )
{
    global $connection;
    global $category_id;
    $level = "0";
    $sql = "SELECT * from categories WHERE category_parent_id='deftl'";
    if ( !( $result = @mysql_query( $sql, $connection ) ) )
    {
        exit( "** COULD NOT BUILD CATEGORY DROP DOWN ** ".mysql_error( ) );
    }
    while ( $row = mysql_fetch_array( $result ) )
    {
        $parent = "{$row['category_id']}";
        $row[category_name] = stripslashes( "{$row['category_name']}" );
        if ( $category_id == $row[category_id] )
        {
            echo "<option value=\"".$row['category_id']."\" selected>+ {$row['category_name']}</option>\n";
        }
        else
        {
            echo "<option value=\"".$row['category_id']."\">+ {$row['category_name']}</option>\n";
        }
        getchildren( $parent, $level );
    }
}

function getChildren( $parent, $level )
{
    global $connection;
    global $category_id;
    ++$level;
    if ( !ctype_digit( $parent ) )
    {
        $parent = "";
    }
    $sql1 = "SELECT * from categories WHERE category_parent_id='".$parent."' order by category_name";
    if ( !( $result1 = @mysql_query( $sql1, $connection ) ) )
    {
        exit( "Couldn't build category tree child part: ".mysql_error( ) );
    }
    while ( $row1 = mysql_fetch_array( $result1 ) )
    {
        $parent = "{$row1['category_id']}";
        if ( $category_id == $row1[category_id] )
        {
            echo "<option value=\"".$row1['category_id']."\" selected>";
        }
        else
        {
            echo "<option value=\"".$row1['category_id']."\">";
        }
        $i = 0;
        for ( ; $i < $level; ++$i )
        {
            echo " ";
        }
        echo "|--[".$level."]";
        echo " ".$row1['category_name']."</option>\n";
        getchildren( $parent, $level );
    }
}

function getChildrenSEL( $parent, $myparent, $level )
{
    global $connection;
    global $https;
    global $category_id;
    ++$level;
    if ( !ctype_digit( $parent ) )
    {
        $parent = "";
    }
    $sql1 = "SELECT * from categories WHERE category_parent_id='".$parent."' order by category_name";
    if ( !( $result1 = @mysql_query( $sql1, $connection ) ) )
    {
        exit( "Couldn't build category tree child part: ".mysql_error( ) );
    }
    while ( $row1 = mysql_fetch_array( $result1 ) )
    {
        $parent = "{$row1['category_id']}";
        if ( $myparent == $row1[category_id] )
        {
            echo "<option value=\"".$row1['category_id']."\" selected>";
        }
        else if ( $category_id == $row1[category_id] )
        {
            echo "<option value=\"deftl\">";
        }
        else
        {
            echo "<option value=\"".$row1['category_id']."\">";
        }
        $i = 0;
        for ( ; $i < $level; ++$i )
        {
            echo " ";
        }
        echo "|".$level."|";
        echo "{$row1['category_name']}</option>\n";
        getchildrensel( $parent, $myparent, $level );
    }
}

function makeCategoryMap( )
{
    global $connection;
    global $adminurl;
    $level = "0";
    $sql = "SELECT * from categories WHERE category_parent_id='deftl'";
    if ( !( $result = @mysql_query( $sql, $connection ) ) )
    {
        exit( "Couldn't build category tree parent part: ".mysql_error( ) );
    }
    while ( $row = mysql_fetch_array( $result ) )
    {
        $parent = "{$row['category_id']}";
        $sql3 = "SELECT product_id from products WHERE category_id='".$parent."'";
        if ( !( $result3 = @mysql_query( $sql3, $connection ) ) )
        {
            exit( "Couldn't get data from products db" );
        }
        $numrows = mysql_num_rows( $result3 );
        if ( $numrows < 1 )
        {
            $linker = "";
        }
        else
        {
            $linker = "<input type=\"button\" class=\"list\" onclick=\"location.href='".$adminurl."products/productlist.php?category_id={$row['category_id']}'\" value=\"Products ({$numrows})\" />";
        }
        $row[category_name] = stripslashes( "{$row['category_name']}" );
        echo "<tr>\n\t\t\t\t<td> + <a href=\"".$adminurl."products/editcategory.php?category_id={$row['category_id']}\" title=\"{$row['category_desc']}\">{$row['category_name']}</a> </td>\n\t\t\t\t<td>";
        if ( $row[category_publish] == Y )
        {
            echo "<input type=\"button\" class=\"deactivate\" value=\"(click to deactivate)\" onclick=\"location.href='".$adminurl."products/bin/categoryonoff.php?category_id={$row['category_id']}&act=N'\" />";
        }
        else
        {
            echo "<input type=\"button\" class=\"activate\" value=\"(click to activate)\" onclick=\"location.href='".$adminurl."products/bin/categoryonoff.php?category_id={$row['category_id']}&act=Y'\" />";
        }
        echo "</td>\n\t\t\t\t<td> <input type=\"button\" class=\"add\" onclick=\"location.href='".$adminurl."products/addproduct.php?category_id={$row['category_id']}'\" value=\"Add\" /> {$linker} </td>\n\t\t\t\t<td> <input type=\"button\" class=\"edit\" onclick=\"location.href='{$adminurl}products/editcategory.php?category_id={$row['category_id']}'\" value=\"Edit\" /> <input type=\"button\" class=\"delete\" value=\"DELETE\" onclick='usr_conf(\"{$adminurl}products/bin/deletecategory.php\",\"category_id={$row['category_id']}\",\"Are you sure you want to delete this category?\");' /> </td>\n\t\t\t</tr>\n";
        getchildrenlist( $parent, $level );
    }
}

function getChildrenList( $parent, $level )
{
    global $connection;
    global $adminurl;
    ++$level;
    $where_in_level = "0";
    if ( !ctype_digit( $parent ) )
    {
        $parent = "";
    }
    $sql1 = "SELECT * from categories WHERE category_parent_id='".$parent."'";
    if ( !( $result1 = @mysql_query( $sql1, $connection ) ) )
    {
        exit( "Couldn't build category tree child part: ".mysql_error( ) );
    }
    while ( $row1 = mysql_fetch_array( $result1 ) )
    {
        ++$where_in_level;
        $parent = "{$row1['category_id']}";
        $level_indent = $level - 1;
        $i = 0;
        for ( ; $i < $level_indent; ++$i )
        {
            echo " ";
        }
        if ( $last_level == $level )
        {
            echo " ";
        }
        else
        {
            echo " ";
        }
        $i = 0;
        for ( ; $i < $level; ++$i )
        {
            echo " ";
        }
        $sql3 = "SELECT product_id from products WHERE category_id='".$parent."'";
        if ( !( $result3 = @mysql_query( $sql3, $connection ) ) )
        {
            exit( "Couldn't get data from products db" );
        }
        $numrows = mysql_num_rows( $result3 );
        if ( $numrows < 1 )
        {
            $linker = "";
        }
        else
        {
            $linker = "<input type=\"button\" class=\"list\" onclick=\"location.href='".$adminurl."products/productlist.php?category_id={$row1['category_id']}'\" value=\"Products ({$numrows})\" />";
        }
        echo "\t<tr>\n\t\t<td> &raquo; (".$level.") <a href=\"{$adminurl}products/editcategory.php?category_id={$row1['category_id']}\" title=\"{$row1['category_desc']}\">{$row1['category_name']}</a></td>\n\t\t\t<td>";
        if ( $row1[category_publish] == Y )
        {
            echo "<input type=\"button\" class=\"deactivate\" value=\"(click to deactivate)\" onclick=\"location.href='".$adminurl."products/bin/categoryonoff.php?category_id={$row1['category_id']}&act=N'\" />";
        }
        else
        {
            echo "<input type=\"button\" class=\"activate\" value=\"(click to activate)\" onclick=\"location.href='".$adminurl."products/bin/categoryonoff.php?category_id={$row1['category_id']}&act=Y'\" />";
        }
        echo "</td> \n\t\t\t<td><input type=\"button\" class=\"add\" onclick=\"location.href='".$adminurl."products/addproduct.php?category_id={$row1['category_id']}'\" value=\"Add\" /> {$linker}</td>\n\t\t\t<td> <input type=\"button\" class=\"edit\" onclick=\"location.href='{$adminurl}products/editcategory.php?category_id={$row1['category_id']}'\" value=\"Edit\" /> <input type=\"button\" class=\"delete\" value=\"DELETE\" onclick='usr_conf(\"{$adminurl}products/bin/deletecategory.php\",\"category_id={$row1['category_id']}\",\"Are you sure you want to delete this category?\");' /></td>\n\t</tr>\n";
        getchildrenlist( $parent, $level );
        $last_level = $level;
    }
}

function productcheckcategories( )
{
    global $connection;
    global $oktoadd;
    $sql3 = "SELECT * from categories";
    if ( !( $result3 = @mysql_query( $sql3, $connection ) ) )
    {
        exit( "Couldn't get data from category db" );
    }
    $numrows = mysql_num_rows( $result3 );
    if ( 1 <= $numrows )
    {
        $oktoadd = "Y";
    }
}

function countrycompareDD( $country_dd )
{
    global $connection;
    echo "<select name=\"country\">";
    $sql3 = "SELECT country_short, country_long from country WHERE zone_id !='0'";
    if ( !( $result3 = @mysql_query( $sql3, $connection ) ) )
    {
        exit( "Couldn't execute request 1" );
    }
    while ( $row3 = mysql_fetch_array( $result3 ) )
    {
        if ( $row3[country_short] == $country_dd )
        {
            echo "<option value=\"".$row3['country_short']."\" selected>{$row3['country_long']}</option>\n";
        }
        else
        {
            echo "<option value=\"".$row3['country_short']."\">{$row3['country_long']}</option>\n";
        }
    }
    echo "</select>";
}

function alternatecolour( $level )
{
    global $altclass;
    $class_1 = " class=altlight";
    $class_2 = " class=altdark";
    $altclass = $class_1;
    $level % 2 ? 0 : ( $altclass = $class_2 );
}

function check_email_address( $email )
{
    if ( !preg_match( "/[^@]{1,64}@[^@]{1,255}/i", $email ) )
    {
        return FALSE;
    }
    $email_array = explode( "@", $email );
    $local_array = explode( ".", $email_array[0] );
    $i = 0;
    for ( ; $i < sizeof( $local_array ); ++$i )
    {
        if ( preg_match( ">^(([A-Za-z0-9!#\$%&'*+/=?^_`{|}~-][A-Za-z0-9!#\$%&'*+/=?^_`{|}~\\.-]{0,63})|(\"[^(\\|\")]{0,62}\"))\$>i", $local_array[$i] ) )
        {
            continue;
        }
        return FALSE;
    }
    if ( !preg_match( "/^\\[?[0-9\\.]+\\]?\$/i", $email_array[1] ) )
    {
        $domain_array = explode( ".", $email_array[1] );
        if ( sizeof( $domain_array ) < 2 )
        {
            return FALSE;
        }
        $i = 0;
        for ( ; $i < sizeof( $domain_array ); ++$i )
        {
            if ( preg_match( "/^(([A-Za-z0-9][A-Za-z0-9-]{0,61}[A-Za-z0-9])|([A-Za-z0-9]+))\$/i", $domain_array[$i] ) )
            {
                continue;
            }
            return FALSE;
        }
    }
    return TRUE;
}

if ( get_magic_quotes_gpc( ) )
{
    $in = array(
        $GLOBALS['_GET'],
        $GLOBALS['_POST'],
        $GLOBALS['_COOKIE']
    );
    while ( list( $k, $v ) = each( &$in ) )
    {
        foreach ( $v as $key => $val )
        {
            if ( !is_array( $val ) )
            {
                $in[$k][$key] = stripslashes( $val );
            }
            else
            {
                $in[] =& $in[$k][$key];
            }
        }
    }
    unset( $in );
}
if ( isset( $_POST ) || isset( $_GET ) )
{
    $in = array(
        $GLOBALS['_GET'],
        $GLOBALS['_POST']
    );
    while ( list( $k, $v ) = each( &$in ) )
    {
        foreach ( $v as $key => $val )
        {
            if ( !is_array( $val ) )
            {
                if ( ( $key == "txtContent" || $key == "category_desc" || !( $key == "metaadd" ) && !( $admin_ok_check == $_SESSION[admin_ok] ) ) || !preg_match( "/".$adminDir."/", "{$_SERVER['PHP_SELF']}" ) || !preg_match( "/paypalcallback.php/", "{$_SERVER['PHP_SELF']}" ) || !preg_match( "/updatecurrency.php/", "{$_SERVER['PHP_SELF']}" ) )
                {
                    if ( !preg_match( "/createcurrency.php/", "{$_SERVER['PHP_SELF']}" ) )
                    {
                        $val = preg_replace( "/\\s+/", " ", $val );
                        $in[$k][$key] = htmlentities( trim( $val ) );
                    }
                }
            }
            else
            {
                $in[] =& $in[$k][$key];
            }
        }
    }
    unset( $in );
}
$sYear = "2007";
$cwd = dirname( __FILE__ );
$instdir = str_replace( "private", "", "{$cwd}" );
include( "{$instdir}private/config.php" );
include( "{$instdir}private/cache.php" );
include( "{$instdir}private/pca_config.php" );
if ( empty( $shopurl ) )
{
    header( "Location: install/" );
    exit( );
}
include( "{$instdir}private/db_connect.php" );
include( "{$instdir}private/messages.php" );
include( "{$instdir}private/shop_messages.php" );

$admin_dirs = array( "settings", "orders", "newsletter", "reports", "shoppers", "products", "content" );
$mtta = array( "mail", "smtp" );
$ppgfields = array( "ppemail", "ppmerchantid", "ppsecret", "pptestmode", "ppinstid", "ppintip", "ppextip", "ppgiftaid", "ppApply3DSecure", "ppApplyAVSCV2", "ppauthmode", "ppsignature" );
$category_style = array( "List with Thumbnail", "List no Thumbnail", "Grid" );
$category_sort_order = array( "Alphabetical", "Newest Items First", "Newest Items Last", "Featured Items First", "Custom Sort", "Price Low - High", "Price High - Low" );
$sf_style = array( "List", "Grid" );
$sf_sort_order = array( "Alphabetical", "By ID", "Randomised" );
$cf_sort_order = array( "Alphabetical", "By ID", "Custom" );
$allow_next = array( "selectdeliveryaddress.php", "revieworder.php", "reviewproduct.php", "revieworder.php?clearptid=Y", "orders.php" );
if ( $_GET[next] && !in_array( "{$_GET['next']}", $allow_next ) )
{
    echo "Not allowed!";
    exit( );
}
if ( !ctype_digit( $_GET[cmsid] ) )
{
    $GLOBALS['_GET'][cmsid] = "";
}
$GLOBALS['_GET'][cmsid] = mysql_real_escape_string( "{$_GET['cmsid']}" );
if ( !ctype_digit( $_GET[category_id] ) )
{
    $GLOBALS['_GET'][category_id] = "";
}
$GLOBALS['_GET'][category_id] = mysql_real_escape_string( "{$_GET['category_id']}" );
if ( !ctype_digit( $_GET[product_id] ) )
{
    $GLOBALS['_GET'][product_id] = "";
}
$GLOBALS['_GET'][product_id] = mysql_real_escape_string( "{$_GET['product_id']}" );
if ( !ctype_digit( $_GET[product_xo_id] ) )
{
    $GLOBALS['_GET'][product_xo_id] = "";
}
$GLOBALS['_GET'][product_xo_id] = mysql_real_escape_string( "{$_GET['product_xo_id']}" );
if ( !ctype_digit( $_GET[o_id] ) )
{
    $GLOBALS['_GET'][o_id] = "";
}
$GLOBALS['_GET'][o_id] = mysql_real_escape_string( "{$_GET['o_id']}" );
if ( !ctype_digit( $_GET[p_id] ) )
{
    $GLOBALS['_GET'][p_id] = "";
}
$GLOBALS['_GET'][p_id] = mysql_real_escape_string( "{$_GET['p_id']}" );
if ( !ctype_digit( $_GET[a_id] ) )
{
    $GLOBALS['_GET'][a_id] = "";
}
$GLOBALS['_GET'][a_id] = mysql_real_escape_string( "{$_GET['a_id']}" );
$GLOBALS['_POST'][query_string] = mysql_real_escape_string( "{$_POST['query_string']}" );
if ( !ctype_digit( $_POST[pre_xo_id] ) )
{
    $GLOBALS['_POST'][pre_xo_id] = "";
}
$GLOBALS['_POST'][pre_xo_id] = mysql_real_escape_string( "{$_POST['pre_xo_id']}" );
if ( !ctype_digit( $_POST[p_id] ) )
{
    $GLOBALS['_POST'][p_id] = "";
}
$GLOBALS['_POST'][p_id] = mysql_real_escape_string( "{$_POST['p_id']}" );
if ( !ctype_digit( $_POST[qty] ) )
{
    $GLOBALS['_POST'][qty] = "";
}
$GLOBALS['_POST'][qty] = mysql_real_escape_string( "{$_POST['qty']}" );
$GLOBALS['_POST'][loginemail] = mysql_real_escape_string( "{$_POST['loginemail']}" );
$GLOBALS['_POST'][loginpass] = mysql_real_escape_string( "{$_POST['loginpass']}" );
if ( $_POST[mail_outs] != "Y" && $_POST[mail_outs] != "N" )
{
    $GLOBALS['_POST'][mail_outs] = "Y";
}
$GLOBALS['_POST'][mail_outs] = mysql_real_escape_string( "{$_POST['mail_outs']}" );
$GLOBALS['_POST'][old_password] = mysql_real_escape_string( "{$_POST['old_password']}" );
$GLOBALS['_POST'][confirm_password] = mysql_real_escape_string( "{$_POST['confirm_password']}" );
$search = array( "@<script[^>]*?>.*?</script>@si", "@<[\\/\\!]*?[^<>]*?>@si", "@&(quot|#34);@i", "@&(amp|#38);@i", "@&(lt|#60);@i", "@&(gt|#62);@i", "@&(nbsp|#160);@i", "@&(iexcl|#161);@i", "@&(cent|#162);@i", "@&(pound|#163);@i", "@&(copy|#169);@i", "@&#(\\d+);@e" );
$replace = array(
    "",
    "",
    "\\1",
    "\"",
    "&",
    "<",
    ">",
    " ",
    chr( 161 ),
    chr( 162 ),
    chr( 163 ),
    chr( 169 ),
    "chr(\\1)"
);
$GLOBALS['_POST'][company] = mysql_real_escape_string( "{$_POST['company']}" );
$GLOBALS['_POST'][company] = mysql_real_escape_string( "{$_POST['company']}" );
$GLOBALS['_POST'][company] = preg_replace( $search, $replace, $_POST[company] );
$GLOBALS['_POST'][first_name] = mysql_real_escape_string( "{$_POST['first_name']}" );
$GLOBALS['_POST'][first_name] = preg_replace( $search, $replace, $_POST[first_name] );
$GLOBALS['_POST'][last_name] = mysql_real_escape_string( "{$_POST['last_name']}" );
$GLOBALS['_POST'][last_name] = preg_replace( $search, $replace, $_POST[last_name] );
$GLOBALS['_POST'][email] = mysql_real_escape_string( "{$_POST['email']}" );
$GLOBALS['_POST'][email] = preg_replace( $search, $replace, $_POST[email] );
$GLOBALS['_POST'][no_name] = mysql_real_escape_string( "{$_POST['no_name']}" );
$GLOBALS['_POST'][no_name] = preg_replace( $search, $replace, $_POST[no_name] );
$GLOBALS['_POST'][street] = mysql_real_escape_string( "{$_POST['street']}" );
$GLOBALS['_POST'][street] = preg_replace( $search, $replace, $_POST[street] );
$GLOBALS['_POST'][town] = mysql_real_escape_string( "{$_POST['town']}" );
$GLOBALS[

Here's the code with the function that won't work!

Code: [Select]
$itemsRaw = explode(" ", $player['inventory']);
foreach ($itemsRaw as $inv){
$contents = explode("-", $inv);
if(strlen($contents[0]) > 0 && strlen($contents[1]) > 0 && $contents[1] > 0)
echo getItemName($contents[0]) . " (" . number_format($contents[1]) . ")<br />";
}
Here's my function:

Code: [Select]
function getItemName($id_raw){
$id = $id_raw - 1;
$q = $db->query("SELECT * FROM items WHERE id = $id") or die(mysql_error());
$f = $db->fetch_assoc($q);
return $f['name'];
}
It stops the page when it gets to that point and won't load anything else and the function doesn't even work with it :/ What's wrong with it? If anything..