GroundZeroStudio

If thats the key where is the lock. What can I do to fix it?

Modding it to 755 doesn't work either. Just PHP files wont work. And WTF anyway, there is no line 0

It is only the PHP files that don't work :'(

Just checked, my other directories work wamboldt/SuperiorSecurity/Index.html

Warning: Unknown(): open_basedir restriction in effect. File(/home/.mccoy/wamboldt/ictonentertainment.com/wamboldt/index.php) is not within the allowed path(s): (/dh/web/phpmyadmin:/tmp:/dh/solidclient:/usr/local/lib/php:/home/icton:/home/.mccoy/icton) in Unknown on line 0 Warning: Unknown(/home/.mccoy/wamboldt/ictonentertainment.com/wamboldt/index.php): failed to open stream: Operation not permitted in Unknown on line 0 Warning: Unknown(): open_basedir restriction in effect. File(/home/.mccoy/wamboldt/ictonentertainment.com/wamboldt/index.php) is not within the allowed path(s): (/dh/web/phpmyadmin:/tmp:/dh/solidclient:/usr/local/lib/php:/home/icton:/home/.mccoy/icton) in Unknown on line 0 Warning: Unknown(/home/.mccoy/wamboldt/ictonentertainment.com/wamboldt/index.php): failed to open stream: Operation not permitted in Unknown on line 0 Warning: (null)() [function.include]: Failed opening '/home/.mccoy/wamboldt/ictonentertainment.com/wamboldt/index.php' for inclusion (include_path='.:/usr/local/lib/php') in Unknown on line 0 THAT APPEARS ON EVERY SINGLE PAGE. *RUNS AROUND SCREAMING WHY!!" It worked perfect an hour ago and I made no changes. I checked my FTP, all files are there, nothing wrong with the CHMOD and they still have all the code. I changed NOTHING since the last time I was on the site.. Check it out at groundzerostudios.co.nr WHY ME!!!!!!!!!!

I want to display a little message that says goodbye than redirect the user to another page. I want a 3 second delay before they are redirected. Is this possible?

that didn't do anything either. Also, in a MySQL query , why can't I select a auto-increment value. In this case index is auto-increment. $sql4 = "SELECT Sender,Date,Subject,Index FROM Mail WHERE Reciever='{$_SESSION['logname']}'"; $result4 = mysql_query($sql4) or die("Unable to execute dynamic query 4"); $num4 = mysql_num_rows($result4);

It still doesn't work

Mail_Compose.php: <?php /* Program Designation ......Mail_Compose.php Program Specifications....This program is designed to take input from the user and input it into the MySQL Database for viewing by another user. Program Author............Wamboldt, Founder, Ground Zero Studios Program Security..........This program validates all input from the user and removes html tags. Program Version...........1.00 */ ?> <?php session_start(); ****connection data was here**** if (@$_SESSION['auth'] != "yes") /* Checks if the user is logged in*/ { header("Location: login.php"); exit(); } $connection = mysql_connect($***,$***,$***) or die ("Unable to connect to server"); $db = mysql_select_db($***, $connection) or die ("Unable to select a MySQL database"); $date = date("Y-m-d h:m:s"); $sql = "SELECT FirstName,LastName,Password,Title FROM ClientData WHERE LoginName='{$_SESSION['logname']}'"; $result = mysql_query($sql) or die("Unable to execute dynamic query 1"); $row = mysql_fetch_array($result,MYSQL_ASSOC); extract($row); $sql2 = "SELECT Discount,ServiceCount,CourseCount,Admin,Reviews FROM ClientData2 WHERE LoginName='{$_SESSION['logname']}'"; $result2 = mysql_query($sql2) or die("Unable to execute dynamic query 2"); $row2 = mysql_fetch_array($result2,MYSQL_ASSOC); extract($row2); /*Begin Validate Mail Code */ switch (@$_GET['do']) { case "validate": $_GET["do"]; if ($do == "validate") { $sql3 = "SELECT LoginName FROM ClientData WHERE LoginName='$_POST[to_user]'"; //Attempts to select the user the message is going to $result3 = mysql_query($sql3) //Executes query or die("Unable to execute the specified MySQL query 3"); $num3 = mysql_num_rows($result3); //Sets the value of num to the amount of rows found in the above query if ($num3 == 0) { unset($_get['do']); $error = "Sorry, $to_user does not exist."; include("Mail_Compose_Form.html"); exit(); } elseif ($num3 != 0) { $do == "send"; header("Location: Mail_Compose.php?do=send"); } } /*End of Validate Mail Code */ break; //START OF LOGIN REGISTRATION FORM case "send": /* Begin Send Mail Code */ $_GET["do"]; if ($do == "send") //Checks to see if the script has validated all data submitted { $to=$_POST['to_user']; $sql_send = "INSERT INTO Mail (Sender,Reciever,Subject,Body,Date,Opened) VALUES ('{$_SESSION['logname']}','$to','$subject_input','$body_text','$date','n')"; $result_send = mysql_query($sql_send); $error = "You message has been sent to to_user successfully."; //This message will be displayed in Mail_Home header("Location: mail_home.php"); } /*End of Send Mail Code */ break; default: include("Mail_Compose_Form.html"); } ?> Mail_Compose_Form.html <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html> <head> <title>Ground Zero Studios; Imagination Technologies PM System</title> <meta name="description" content="Affordable Web and Game design and programming"> <meta name="keywords" content="HTML, XHTML, CSS, JavaScript, PHP, Affordable, Web Design, Freelancers"> </head> <body bgcolor="#00CCFF"> <?php include 'marquee.php'; //Includes the Marquee file?> <?php include 'NavbarAlpha.php'; //Includes the Main Navagation bar ?> <h2 align="center">Welcome <?php echo " $Title $FirstName $LastName\n";//Displays the User's Title, First Name, and Last Name ?> </h2> <?php include 'ClientNavAlpha.php'; //Includes the Client Navagation Bar ?> <table border="0"> <tr><td><?php echo "<font color=red><b>$error</b></font>"; ?></td></tr> </table> <table border="0"> <form action="Mail_Compose.php?do=validate" method="POST"> <tr><td>To:</td><td><input type="text" name="to_user" value="<?php echo @$to_user ?>" size="50" maxlegnth="40"></td></tr> <tr><td>Subject:</td><td><input type="text" name="subject_input" value="<?php echo @$subject_input ?>" size="50" maxlegnth="100"></td></tr></table> <table><tr><td><textarea name="body_text" rows="20" cols="50"><?php echo @$body_text ?></textarea></td></tr> <tr><td><input type="submit" align="center" value="Send"></td></tr> </form> </td> </table> </body> </html> For some reason it only ever inserts the from sender,date, and opened into the database. I spelled everything right, so I have no bloody clue what is wrong. Please help

if (ereg("(Name)", $field)) //CHECKS USERNAME { if (!ereg("^[A-Za-z' -]{1,50}$",$value)) { unset($_GET['do']); $message_new = "$field is not a valid name. Please try again."; include("login_form.html"); exit(); } } $$field = strip_tags(trim($value)); //STRIPS CODE TAGS AND SPACES ... $pattern = '([[:digit:]]|[~`!@#$%^&*()_=+{}|\:;"/?,]|[|]|-)+'; if (ereg($pattern,$firstname)) //This code checks the first name { //This is the code that is executed if the first name is invalid unset($_GET['do']); $message_new = "$firstname is not a valid format "; include("login_form.html"); exit(); } As you might realize I left out a great deal of my code for security reasons. Anyway, when i enter O'Hearn as a name in the field and submit it, it returns with the error O\'Hearn is not a valid format Everytime I click submit, one more \ is added. Any idea what is wrong?

dude, switch is defined. I have a couple hundred lines of code and didnt want to post them all

{ $required = array ('newname' , 'newpass' , 'verpass' , 'email' , 'veremail' , 'country'); //LIST OF FIELDS NOT REQUIRED } case "new": foreach($_POST as $field => $value) { if (in_array($field, $required)) //LINE 79 { if ($value == "") { unset($_GET['do']); $message_new = "A Required field entry is missing. Please try again. The Missing Field is $field"; include("login_form.html"); exit(); } } ERROR! Warning: in_array() [function.in-array]: Wrong datatype for second argument in /home/.mccoy/wamboldt/ictonentertainment.com/wamboldt/login.php on line 79 Warning: in_array() [function.in-array]: Wrong datatype for second argument in /home/.mccoy/wamboldt/ictonentertainment.com/wamboldt/login.php on line 79 Warning: in_array() [function.in-array]: Wrong datatype for second argument in /home/.mccoy/wamboldt/ictonentertainment.com/wamboldt/login.php on line 79 Warning: in_array() [function.in-array]: Wrong datatype for second argument in /home/.mccoy/wamboldt/ictonentertainment.com/wamboldt/login.php on line 79 Warning: in_array() [function.in-array]: Wrong datatype for second argument in /home/.mccoy/wamboldt/ictonentertainment.com/wamboldt/login.php on line 79 Warning: in_array() [function.in-array]: Wrong datatype for second argument in /home/.mccoy/wamboldt/ictonentertainment.com/wamboldt/login.php on line 79 Warning: in_array() [function.in-array]: Wrong datatype for second argument in /home/.mccoy/wamboldt/ictonentertainment.com/wamboldt/login.php on line 79 Warning: in_array() [function.in-array]: Wrong datatype for second argument in /home/.mccoy/wamboldt/ictonentertainment.com/wamboldt/login.php on line 79 Warning: in_array() [function.in-array]: Wrong datatype for second argument in /home/.mccoy/wamboldt/ictonentertainment.com/wamboldt/login.php on line 79 Warning: in_array() [function.in-array]: Wrong datatype for second argument in /home/.mccoy/wamboldt/ictonentertainment.com/wamboldt/login.php on line 79 Warning: in_array() [function.in-array]: Wrong datatype for second argument in /home/.mccoy/wamboldt/ictonentertainment.com/wamboldt/login.php on line 79 Warning: in_array() [function.in-array]: Wrong datatype for second argument in /home/.mccoy/wamboldt/ictonentertainment.com/wamboldt/login.php on line 79 Warning: in_array() [function.in-array]: Wrong datatype for second argument in /home/.mccoy/wamboldt/ictonentertainment.com/wamboldt/login.php on line 79 Warning: in_array() [function.in-array]: Wrong datatype for second argument in /home/.mccoy/wamboldt/ictonentertainment.com/wamboldt/login.php on line 79 i put a comment on line 79. That is the right datatype so what is wrong?

I have an array named $not_required . I need it so it checks to see if field is not equal to the contents of the array/ This is what I have if ($field != $not_required) But thhat doesnt work

<?php /* Program: Register.php * Desc: Register program for the Clients only section of Ground Zero Studios * Version: 1.00.00 */ session_start(); $user="****"; $host="*****"; $password="****"; $database="*****"; switch (@$_GET['do']) { case "login": $connection = mysql_connect($host, $user,$password) or die("Couldn't connect to a valid server."); $db = mysql_select_db($database, $connection) or die("Couldn't select a valid database"); $sql = "SELECT LoginName FROM ClientData WHERE LoginName='$_POST[fusername]'"; $result = mysql_query($sql) or die("Unable to execute the specified MySQL query #1"); $num = mysql_num_rows($result); if ($num == 1) //login name was located { $sql = "SELECT LoginName FROM ClientData WHERE LoginName ='$_POST[fusername]' AND Password = password('$_POST[fpassword]')"; $result2 = mysql_query($sql) or die("Unable to execute the specified MySQL query #2"); $num2 = mysql_num_rows($result2); if ($num2 > 0) //the correct password was entered { $_SESSION['auth']="yes"; $logname=$_POST['fusername']; $_SESSION['logname'] = $logname; $today = date("Y-m-d h:m:s"); $sql = "INSERT INTO Login (LoginName, LoginTime) VALUES ('$logname','$today')"; mysql_query($sql) or die("Unable to execute the specified MySQL query #3"); header("Location: client_control_panel.php"); } else { unset($do); $message="Incorrect UserName/Password combination! Please try again.<br>"; include("login_form.html"); } } elseif ($num ==0) // The login name was not located { unset($do); $message = "Incorrect UserName/Password combination! Please try again.<br>"; include("login_form.html"); } break; case "new": foreach($_POST as $field => $value) { if ($field != "fax" {RIGHT HERE I WANT IT SO IT CHECKS IF ITS NOT FAX OR PHONE OR ZIP INSTEAD OF JUST FAX} ) { if ($value == "") { unset($_GET['do']); $message_new = "A Required field entry is missing. Please try again."; include("login_form.html"); exit(); } } if (ereg("(Name)", $field)) { /*if (!ereg("^[A-Za-z' -]{1,50}$",$value)) { unset($_GET['do']); $message_new = "$field is not a valid name. Please try again."; include("login_form.html"); exit(); }*/ } $$field = strip_tags(trim($value)); } //end foreach if (!ereg("^[0-9A-Za-z]{6,6}(\-[0-9A-Za-z]{5,5})?$",$zip)) { unset($_get['do']); $message_new = "$zip is not a valid zip code. Please try again."; include("login_form.html"); exit(); } if (!ereg("^[0-9)(xX -]{7,20}$",$phone)) { unset($_GET['do']); $message_new = "$phone is not a valid phone number. Please try again."; include("login_form.html"); exit(); } if ($fax != "" ) { if (!ereg("^[0-9)(xX -]{7,20}$",$fax)) { unset($_GET['do']); $message_new = "$fax is not a valid fax machine number. Please try again."; include("login_form.html") ; exit(); } } if (!ereg("^.+@.+\\..+$",$email)) { unset($_GET['do']); $message_new = "$email is not a valid email address. Please re-enter it."; include("login_form.html"); exit(); } /* check to see if login name already exists in the database */ $connection =mysql_connect($host,$user,$password) or die ("Unable to connect to server"); $db = mysql_select_db($database,$connection) or die("Unable to select a valid database"); $sql = "SELECT LoginName FROM ClientData WHERE LoginName='newname'"; $result = mysql_query($sql) or die("Unable to execute specified MySQL query #4"); $num = mysql_numrows($result); if ($num > 0) { unset($_GET['do']); $message_new = "$newname already registered. Please select another Member ID."; include("login_form.html"); exit(); } else { $today = date("Y-m-d"); $sql = "INSERT INTO ClientData (LoginName, CreateDate,Password,FirstName,Lastname,Street,City,State,Zip,Phone,Fax,Email) VALUES ('$newname','$today',password('$newpass'),'$firstname','$lastname','$street','$city','$state','$zip','$phone', '$fax','$email')"; mysql_query($sql); $sql2 = "INSERT INTO ClientData2 (LoginName, Discount,ServiceCount,Service1,Service2,Service3,Service4,Service5,CourseCount,Course1, Course2,Course3,Course4,Course5,Title,Reviews,Admin) VALUES ('$newname','0%','0','none','none','none','none','none','0','none','none','none','none','none','Client','0','no')"; $result = mysql_query($sql2); $_SESSION['auth']="yes"; $_SESSION['logname'] = $newname; $emess= "You have just signed up as a client with Ground Zero Studios. Our team will begin working with you to finish"; $emess.=" your service, so expect some emails from us soon. To check the status of your service, login to GZS with your"; $emess.=" user name and password. Your username and password are :"; $emess.="\n\n\t$newname\n\t$newpass\n\n"; $emess.="We strongly suggest you keep those in a safe place as your password is"; $emess.="encrypted within our database and we cannot view it. "; $emess.="-See you around,"; $emess.="The Ground Zero Studios Team"; $ehead= "From [email protected] "; $subj = "Your client account with Ground Zero Studios"; $mailsend=mail("$email","$subj","$emess","$ehead"); header("Location: welcome.php"); } break; default: include("login_form.html"); } ?> whatever I do it keeps returning a field is missing please try again

None of that works. I keep getting required field entry is missing even with all the code. I just want it so you dont have to fill in all the fields