This project is to take an existing movie/photo website and rewrite some of the PHP in order to protect it from hacks.
Also, I want to get bids to redo the frontend as a complete flash page.
The site has several security holes, which became clear when some of the pages were replaced with cialis spam links. I think it was an XSS attack, but they might have gotten in another way.
-database design changed so that existing admin cms is assigning unique IDs instead of using titles in strings. the data needs to be enforced and checked.
-html must escape incoming data.
-contact form must also be locked down to escape incoming data.
-also, it might be a good idea to make the whole page into a flash app. there are some flash elements on the page already, and the menu could be put into flash pretty easily.
you can get the link to the URL through the attached file.