|
|||||||||
|
|||||||||
| |||||||||
|
|||||||||
|
|||||||||
| |||||||||
|
|
|
| |||||||||
 |
|
|
«
Previous Thread
|
Next Thread
»
|
Thread Tools | Search this Thread | Rate Thread | Display Modes |
Dev Shed Forums Sponsor:
|
|
|
|
#1
July 22nd, 2005, 12:40 PM
|
||||
|
||||
|
Vintage Sign Co.
Hi ya,
I am working on a site for a company that sell old advertising signs and would appreciate any feedback people might have before I commit myself to the design! It is here: http://www.lampdesign.co.uk/desdev/vsc/ Thanks!
__________________
beardo ;0) ------------------------------- Last edited by beardo : July 25th, 2005 at 01:15 PM. Reason: No Response
|
|
#2
July 29th, 2005, 01:39 PM
|
||||
|
||||
|
404... Is that on purpose? Do you still want some input?
__________________
Web Design Tips - Posting and You If I've been helpful, and/or you're really nice, consider buying something from my Amazon.com wishlist.
|
|
#3
July 30th, 2005, 01:24 PM
|
||||
|
||||
|
I get a 404.
__________________
"There is no such thing as human essence, we are all condemned to freedom." - Jean Paul Sartre "I think therefore I am" - Surely you assume the existence of the thinker to think? http://www.oiloftrop.com http://www.makepovertyhistory.org - Please I feel very strongly. http://www.trollsonly.com - This is a place to relax, talk, and even have some friendly debate.
|
|
#4
August 1st, 2005, 04:26 AM
|
||||
|
||||
|
re 404
Hi There,
My original post was submitted some time ago and the site has since been moved onto it's real url. You can view the site here: http://www.thevintagesigncompany.com/ Please note; There are some empty pages and the index content is not all there. The empty parts need to be filled by the client via a CMS. Thanks for taking a look!
|
|
#5
August 2nd, 2005, 08:32 PM
|
||||
|
||||
|
Nice site, with a good, easy to navigate layout. Everything was pretty easy to read.
You've got some validation issues on your registration form, however. View my profile (name: asdf asdf) to see why. I can inject JavaScript and/or some HTML into your form. Low risk, but still worth fixing. Use htmlentities() on your data before you "redisplay" it in a form element. ---John Holmes...
|
|
#6
August 7th, 2005, 06:01 PM
|
||||
|
||||
|
Thanks
Thanks for that advice about javascript/html injection.
I had made sure that my ecommerce system was safe from sql injection sometime ago and neglected to do this. I have subsequently written a function to check all user input for js and html and remove/replace it. All current installs will be patched and I will be updating the codebase so that it is covered for the next version. I didn't realise that you had been on there until I checked the database this evening and noticed that somebody had attemtpted something! I was quite alarmed and set about preventing it immediately!  I backtracked and realised that this was the only place I had publised the URL and was hoping that it was somebody checking the site out. Thanks very much for your post - much appreciated.
|
|
| Viewing: Dev Shed Forums > Web Design > Website Critiques > http://www.lampdesign.co.uk/desdev/vsc/ |
| Thread Tools | Search this Thread |
| Display Modes | Rate This Thread |
|
|
 |
|
|
Del.icio.us
Digg
Google
Spurl
Blink
Furl
Simpy
Y! MyWeb
Linear Mode
