Search:

I Seriously suggest that you go and bone up on sanitizing inputs from $_POST and $_GET streams, etc. You clearly do not understand server security.

Accusing me of what? Who are you? Your the one...

I would like to know what school of thought trained you on server security. Injection can break a server or crack a SQL server or both, usually one follows the other.

any of the external input...

he clearly states

You can lead a horse to water, you can threaten it, beat the crap out of it, shoot it but can you make the bugger drink?

YOU NEVER USE ANY OF THE $_POST / $_GET / $_FILES / $_REQUEST VARIABLES DIRECTLY.

Why? Thats how "Injection" happens, you can not "Clean" and store back in the the $_ streams because they can...

BUT he already knows about AJAX and doesn't want to use that method.

add to the form element the value of method="POST" to tell the form to post the data rather than GET the data as your form is using GET to send data via URL and not to the server via POST.

Also,...

What you need to do is unescape(), decodeURI() or decodeURIComponent() will convert the %xx values, you will have to play with the functions to get the right result.

You don't need a variable to do what you need to do. Yes you will have to wait for the dom to become ready.

Performance issues are generally down to poor implementation and often poor coding,...

The question is raised to "Why do you need the current page in a JS var?" the whole DOM is readily available to any script that runs in the browser, packing a page in to a variable is pretty...

In all cases with JavaScrip, it is best put in the HEAD or the HTML page

if you look in the editor at the source, you will find code like

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0...

Broken strings only crop up because of poor programming and attention to detail.
The idea is to code in such a way that you do not need the \ at all and only when needed.

htmlCode = "<a...

Definition of Newline


X = "Hello, this is a variable
that is not a valid string as its
on three lines, containing a new lines.";

Y = "Hello, this is a variable \r\nthat is a valid string...

If you need to have events fire only when the document has loaded, you can do one of two things.


<body onload="myfunc()"> will call myfunc() when the web page has loaded and all its elements are...

POST requires web server side implementation otherwise the POSTing goes to the trash.

GET does not require a server-side, the value is returned automatically.

In response to your comment about...

Using the URL method would be fine, the following script should work in either two modes.


function urlGet(f){
var str = location.search.slice(1).split("&"), retVal = [], f = f || false;...

1 method is to use cookies between pages
2 method is passing values in a URL using the form and a GET instead of POST method.

If this calculator and booking form are on a non public system, then...

then...
document.getElementById( "my_anchor_tag" ).click() is what you need to cause the element to be "clicked".

OR

do you want to click the link to have an onclick event and have an alert...

document.getElementById( "my_anchor_tag" ) is an Object.

You need to access a property of that object to get at the data, example.


alert( document.getElementById( "my_anchor_tag" ).id ); will...

Why not use a framework like SMARTY which is a PHP library that gives up all the abilities of a CMS that you bolt on to your existing site and develop what you need and not be reliant on others...

The method nap0leon showed was a framework, likely jQuery or similar.

I fail to see how loading a huge file to resolve something that as easy as changing a part of script can benefit the users...

Is laughable, its not flaky, its the implementation. You can ONLY HAVE ONE onload event in the onload element in a document body tag or its javascript call window.onload

What you need to do is...

To set a variable

somevar = document.getElementById(divName).style.marginLeft;
To set a DOM element

document.getElementById(divName).style.marginLeft = somevar;

Hmmmmm, in a former profession I was :D

Most of the problems beginners experience, even some seasoned veterans trip up with things like typos and formats. If in doubt echo the output, alert() is a...

Because it s a string and if you looked at the examples I posted, you would see that yyyy/mm/dd is an acceptable string format for a date, therefore...


xDate =...

Sorry but this document.date.firstDate.value is what you posted, all you have to do is

alert( document.date.firstDate.value ); and that will tell you the format. All you do is insert that at the...