User Profile

Claus Mygind · Feb 2 '16, 01:34 PM

Ok first a few minor errors in your code, but since it is just an example that does not really matter.

Exploitation of your code is not possible when the page is streamed out, because the periods and other PHP command codes you insert in your page are not streamed out to the client machine.

From your example

Code:

 <?php
 
$test = $_POST['test']; 
 
echo 'You wrote '.$test.'!'; 
 
?>

...

Claus Mygind · Dec 21 '15, 04:49 PM

Most likely you are not separating your php code from your html code. But there really is no way to answer your question because you did not show us your code. Would like to have been of more help.

Claus Mygind · Dec 21 '15, 04:20 PM

I will point out your errors below, but first.
1. When posting question use the [CODE/] around your code it makes it easier for other people to read your code.

2. Use indents in your code also to make it easier to read. People are less likely to help if they cannot easily read your code.

3. You should stop using mysql and switch to either mysqli or pdo. To change this you need to enable these modules in your...

Claus Mygind · Dec 17 '15, 04:42 PM

I resolved my issue and thought it best not to leave this question hanging in case others are wondering the same.

What you're seeing is a result of the escape sequence \e, which is the ESC character (0x1B (27) in ASCII). This was added in PHP 5.4.4, which explains the difference between versions. This only occurs with that exact character sequence ("\e"), which explains why the other paths work fine.

Also,...

Claus Mygind · Aug 17 '15, 05:11 PM

From your description, I cannot tell what webserver you are using ie: Apache, MSSQL etc.

One way would be to give each user separate code to execute, which would be authenticated by the web server with their login id.

A second way If you are using a user login into the MySQL data base, you can use Schema Object Privileges. Using this approach you can exactly specify what a user is allowed to do.

But if it just...

Claus Mygind · May 27 '15, 06:24 PM

Never mind. Have to be careful when looking at spaces they get condensed in the output

A simple str_replace command showed the difference

Code:

		$Rval = str_replace(" ", "/", $rKey);
		$Cval = str_replace(" ", "/", $cKey);

and the result when the spaces were replaced with the slashes
looked like this

rType=83217/////1680
cType=83217////1680...

Claus Mygind · May 4 '15, 02:30 PM

go it figured out

made a change to the config file on the webserver for that specific directory.

require ip my.ip.address

Claus Mygind · May 4 '15, 02:29 PM

go it figured out

require ip my.ip.address

Claus Mygind · Apr 13 '15, 04:43 PM

Can't give you an answer to question #1, code looks too confusing. Perhaps you need to add an "order by" clause to your sql query.

Answer to qeustion #2
You appear to only be inserting data into your table. I don't see an update or delete of existing rows in the table. That could explain why you keep building the number of rows you output

Answer to question #3

Your SQL is incorrectly...

Claus Mygind · Mar 31 '15, 06:26 PM

Not pretty, but at least this seems to work fine

In the replace method below all characters not matching 0 to 9 or . are stripped from the msg and displayed in my output.

Code:

function dispWeight(msg) {
	document.getElementById("curWeight").innerHTML = msg.replace( /[^.0123456789]/g,"");
	}

The RexExps is /[^.0123456789]/g
The ^ says exclude these characters
The...

Claus Mygind · Mar 30 '15, 03:08 PM

Really!!! this is how you are going to study, by asking other people to do your research. You could just Google the php manual online.

What other language do you want to put the option list. I suspect you are trying to create a HTML list box.

By now you should have learned how to drop in and out of php/HTML when streaming out your code.

1. php runs only on the web server.
2. HTML and javaScript...

Claus Mygind · Mar 27 '15, 02:22 PM

Are you trying to write a Java app? If you are, you may want to post this in another forum, because it is not the same as javaScript.

Also if this is a web app, you may want to use Chrome. It has an (browser-serialport) API that exposes the COM ports on your device, so you don't have to open your self up to the security problems that come along with Java and the special setting you have to create in the browser to use Java.
...

Claus Mygind · Mar 20 '15, 05:35 PM

As I recall this used to be a security issue, so it was generally not permitted as someone could insert code and hijack your info. So to get around that you need to use the keyboard Ctrl-C to copy to the clipboard.

Maybe things have changed. Check this link http://www.deluxeblogtips.com/2010/0...clipboard.html. You may find other answers out there as well.

Claus Mygind · Mar 20 '15, 05:28 PM

Hard to help you when you don't show your code.

User Profile

Profile Sidebar

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment:

Full path for include files (differences between 5.3 and 5.6)

Leave a comment:

Leave a comment:

How to compare 2 variables

Leave a comment:

Leave a comment:

How to configure one directory which would not require user & password

Adding login request to a Chrome App

Leave a comment:

How to insert a PHP array into a javaScript array

Leave a comment:

Extract number from string with RegExp

Leave a comment:

Leave a comment:

Leave a comment:

Leave a comment: