Jessica

Did you do what draicone suggested?

is your table called tablename?

Use mysql_fetch_assoc instead of mysql_fetch_array

before putting the info in the database, what do you do to escape it?

What are you running on your input to sanitize it? mysql_real_escape_string? add_slashes?

I think you mean you need to let users enter quotation marks, and properly sanitize the input, using mysql_real_escape_string.

Enter in a text box = \r\n I bet these characters are causing the problem.

instead of in a table, just print it somewhere else. No <td> stuff. Outside of your <table>

You see that even if you put it outside the cell? Are you using some sort of CMS or is this pure code?

[quote author=jeff8j link=topic=121948.msg502672#msg502672 date=1168556424] Yes i see it in the source. No i dont have a website to access it right now. [/quote] He asked what do you see in the source :-P I know there are some restrictions on what html can be used inside of a table cell. What happens if you print it outside of a cell?

[quote author=jeff8j link=topic=121948.msg502625#msg502625 date=1168554127] [code]$simage = "" . $website . "/inc/view.php?type=house&id=$hid&image=1&hei=100&wid=100";[/code] [/quote] That first "" . is superfluous. This is a pretty wacky problem. That is your exact code? You're not running any functions on the string, or getting it from a db, etc?

GoDaddy hosting does not use localhost. You need the specific server. You can find it in your setup. Go into Control Panel, MySQL, then click on the first icon in the list of three, the tooltip says View Connection Strings

I concur :)

I can't seem to edit my post. To clarify, that would go: [code] for ($i=1;$i<=12;$i++){   if ($i == $cur_month){       if($i<10){         $i = "0".$i;       }       $month_start .= "<option value=\"$i\" selected>$i</option>\n";       $month_end .= "<option value=\"$i\" selected>$i</option>\n";   }else{       if($i<10){         $i = "0".$i;       }       $month_start .= "<option value=\"$i\">$i</option>\n";       $month_end .= "<option value=\"$i\">$i</option>\n";   } } [/code]

if($i<10){ $i = "0".$i; }

you need to concat the strings with . '".$userdir."' I think what you really want is: $sql = "CREATE TABLE $userdir (date DATE NOT NULL, update TEXT NOT NULL) ENGINE = myisam";

BAH! Why no more solved button?

"But definetly Im not using session_start() apart from when logging in and its working ok?" "For some reason sessions are 'dying' randomly for no reason" These statements cannot coexist.

I guess he could be using 4.1 or something. Hehe. Try it and see timmah :)

Good! Don't forget to hit the solved button.

thorpe - register_globals isn't affected by ini_set. register_globals  boolean     Whether or not to register the EGPCS (Environment, GET, POST, Cookie, Server) variables as global variables.     As of PHP 4.2.0, this directive defaults to off.     Please read the security chapter on Using register_globals for related information.     Please note that register_globals cannot be set at runtime (ini_set()). Although, you can use .htaccess if your host allows it as described above. An example .htaccess entry: php_flag register_globals off.         Note: register_globals is affected by the variables_order directive.     This directive was removed in PHP 6.0.0.

That was a very good explanation  Dark. I am not very verbose, so that was good. jpear: if you look at the page for date you'll see the formatting strings. I think you want H/i/s or G/i/s (although time is normally with : not /, so H:i:s)

lol yes you need to use session_start() on every page. I would use a config file which is included on every page.

Congrats.

you can always type php.net/(function) to get info on a function you don't know about :)