php_tom

your second solution is possible -- with ajax. try this: HTML: <input type='text' id='field1' /> <input type='button' value='go' onclick='ajaxpage("/path/to/php/script.php?field1="+document.getElementById('field1').value ,"results")' /> <div id='results'></div> JavaScript: var root = 'http://www.yoursite.com'; function ajaxpage(url, containerid){ var page_request = false; document.getElementById(containerid).innerHTML = "Loading..."; if (window.XMLHttpRequest) // if Mozilla, Safari etc page_request = new XMLHttpRequest(); else if (window.ActiveXObject){ // if IE try { page_request = new ActiveXObject("Msxml2.XMLHTTP"); } catch (e){ try{ page_request = new ActiveXObject("Microsoft.XMLHTTP"); } catch (e){} } } else return false; page_request.onreadystatechange=function(){ loadpage(page_request, containerid); } page_request.open('GET', root+url, true); page_request.send(null); } function loadpage(page_request, containerid){ if (page_request.readyState == 4 && (page_request.status==200 || window.location.href.indexOf("http")==-1)) document.getElementById(containerid).innerHTML=page_request.responseText; } PHP: <?php // Do something with the data, then print some output. echo $_GET['field1']; ?>

does document.getElementById(id).style.color='#000;'; work?

full path disclosure in http://www.rent-that-home.com/test.php your "forgot password" script lets me figure out usernames. for example entering username "root" says "There is no username root in our database!", but username "rex9990" says "Your login details have been forwarded to your email account". in info.php, you should check that the property exists before you display its info: http://www.rent-that-home.com/info.php?id=1203948520948523413

You really need to block the /sql directory, its a big security hazard to let everybody know the whole structure of your SQL.

Full Path Disclosure: http://ns2271.serverpowered.net/wv/wattcommunities/builder/options/upload/0173/*/15 Do you really want this to be accessible to all users? http://ns2271.serverpowered.net/wv/wattcommunities/builder/options/delete/0173/*/15 More full path disclosure: http://ns2271.serverpowered.net/wv/wattcommunities/admin/

and consequently XSS in http://www.themespot.info/blog/article.php?id_art=%3Cscript%3Ealert(1337357)%3C/script%3E

For hiding the contents of a directory, either disable directory listing on the server, or have an index.php in each directory with <?php header("Location: http://www.themafiaman.com"); exit(0); ?> Cross site scripting (XSS) can be fixed by validating ALL user input. See this article: http://www.htmlcenter.com/tutorials/tutorials.cfm/149/PHP/ Basically you just want to restrict as much as possible what input a user can give. For Array errors, just add a line <?phpif(is_array(<the variable>)) <the variable> = <the variable>[0]; ?> That should fix most of your troubles.

Full Path Disclosure if you enter something thats not a domain, or if you include the HTTP://WWW: Nice script though.

Full Path Disclosure when you try to log in:

You should handle downloading themes with invalid ids, like this link: http://themespot.info/?page=theme&themeid=-1&download=yes Just spins trying to start download every 3 secs. This could use some work: http://themespot.info/?page=screenshot

If I log in with username: Administrator and password:Administrator it says "logged in successfully...

Also this probably should only be accessiible if you've logged in: http://themafiaman.com/cgi-sys/mchat.cgi?channel=themafiaman.com I got that from this page which should be blocked: http://themafiaman.com/chat Not such a problem, but you might hide this directory: http://themafiaman.com/include/ That's all for now.

Maybe I don't need to tell you that this should be removed... http://www.themafiaman.com/phpinfo.php

I've done it lie this: suppose your page is called 'thisPage.php': <?php $info = $GET['info']; if($info=='option1') ;//do something if($info=='option2') ;//do something if($info=='option3') ;//do something ?> <select id='form_select' onchange="document.location.href='thisPage.php?info='+document.getElementById('form_select').value"> <option value='option1'>Option #1</option> <option value='option2'>Option #2</option> <option value='option3'>Option #3</option> </select> Is this what you had in mind?

I think you're naming the images by the timestamp of when they were uploaded... what happens if two people upload a file during the same second? I tried to do it, it seems that on image overwrote the other.