"Also, (although I looked really quickly) I don't think I've seen the input being escaped... Potential sql injection problem... "
im fairly new to this whole security thing so what does SQL injection problem mean? isn't SQL just a code? or am i wrong? also what did "input being escaped" mean? sorry im a real newbie to this world :P
mishka