SESSION problem

1. <?php session_start(); ?>
2. <!DOCTYPE html>
3. <html lang="da" dir="ltr">
4. <head>
5. <?php
6. $title = "Kontrolpanel | Min profil";
7. $desc = "Gå til din profil på selvmægler | Boligsalg gjort hurtigt, nemt og simpelt";
8. include('head.php'); ?>
9. </head>
10. <body>
11.  
12. <?php
13. //Menu box
14. include('navigation.php');
15.  
16. include_once("action/databaseconnection.php");
17. if (isset($_SESSION['sess_user_id'])) {
18. //Hvis personen er logget ind kommer denne.
19. $ID = $_SESSION['sess_user_id'];
20.  
21. //SQL sætning til databasen
22. $query = "SELECT * FROM User
23. WHERE UserID = $ID";
24.  
25. //Variabel med array af resultaterne fra databasen
26. $result = mysqli_query($con, $query);
27. $row = mysqli_fetch_array($result);
28. ?>
29.  
30. <div class="min-container">
31.  
32. <?php include('usermenu.php'); ?>
33. <div class="output">
34. <div class="opbox">
35. <form class="" action="action/saveprofile" method="post">
36. <div class="opheadline">
37. <div class="ophdleft">
38. <h1 class="ophleft">Min profil</h1>
39. </div>
40. <div class="ophdright">
41. <button class="ophright" type="submit" name="button">Gem oplysninger</button>
42. </div>
43. </div>
44.  
45. <div class="op">
46. <div class="line1">
47. <div class="opinput1">
48. <h3 class="opibhead">Fornavn</h3>
49. <? if ($_GET['frontname'] == "missing") {
50. ?>
51. <input type="text" class="invalid" name="firstname" value="<?php echo $row['FirstName']; ?>">
52. <?
53. } else {
54. ?>
55. <input type="text" name="firstname" value="<?php echo $row['FirstName']; ?>">
56. <?
57. }?>
58. </div>
59. <div class="opinput2">
60. <h3 class="opibhead">Efternavn</h3>
61. <? if ($_GET['lastname'] == "missing") {
62. ?>
63. <input type="text" class="invalid" name="lastname" value="<?php echo $row['LastName']; ?>">
64. <?
65. } else {
66. ?>
67. <input type="text" name="lastname" value="<?php echo $row['LastName']; ?>">
68. <?
69. }?>
70. </div>
71. </div>
72.  
73. <div class="line1">
74. <div class="opinput1">
75. <h3 class="opibhead">Email</h3>
76. <input type="email" name="email" value="<?php echo $row['Email']; ?>">
77. </div>
78. <div class="opinput2">
79. <h3 class="opibhead">Telefon nr.</h3>
80. <? if ($_GET['phone'] == "missing") {
81. ?>
82. <input type="tel" class="invalid" name="phone" value="<?php echo $row['Phone']; ?>">
83. <?
84. } else {
85. ?>
86. <input type="tel" name="phone" value="<?php echo $row['Phone']; ?>">
87. <?
88. }?>
89. </div>
90. </div>
91.  
92. <div class="line1">
93. <div class="opinput3">
94. <h3 class="opibhead about">Om mig</h3>
95. <textarea type="text" name="about" id="about" class="about"><?php echo $row['About']; ?></textarea>
96. </div>
97. </div>
98.  
99. <div class="line1">
100. <div class="opinput3">
101. <h3 class="opibhead">Facebook link</h3>
102. <input type="text" name="facebook" class="facebook" value="<?php echo $row['Facebook']; ?>">
103. </div>
104. </div>
105. </form>
106. <?php include('action/alert.php'); ?>
107. <form class="" action="action/changepass" method="post">
108. <div class="changepass">
109. <div class="cpheaddiv">
110. <div class="cphead">
111. <p>Ændre adgangskode</p>
112. </div>
113. <div class="cpbutton">
114. <button type="submit" name="button">Skift kode</button>
115. </div>
116. </div>
117. <div class="passchange">
118. <div class="old">
119. <h3 class="opibhead">Gammelt kodeord</h3>
120. <input type="password" name="oldpass" value="">
121. </div>
122. <div class="newpass">
123. <h3 class="opibhead">Nyt kodeord</h3>
124. <input type="password" name="newpass" value="">
125. </div>
126.  
127. </div>
128. </div>
129. </form>
130.  
131.  
132. </div>
133. </div>
134. </div>
135.  
136. </div>
137.  
138. <?php
139. }
140. else {
141. require_once('action/databaseconnection.php');
142. ?>
143. <div class="fejl">
144. <div class="fejlbox">
145. BEMÆRK: Du skal være logget ind for at tilgå denne side.
146. </div>
147. </div>
148. <?php
149. include('loginpage.php');
150. }
151. ?>
152.  
153. <script src="js/alert.js"></script>
154. <?php
155. $error = $_GET['NoMail'];
156. if($error=='tom'){echo '<script>error("Fejl. Du skal bruge en Email for at kunne logge ind.");</script>';}
157.  
158.  
159. $error = $_GET['Password'];
160. if($error=='wrong'){echo '<script>error("Koden er forkert. Indtast en anden.");</script>';}
161.  
162. $succes = $_GET['Billedeupload'];
163. if($succes=='success'){echo '<script>success("Dit billede blev uploadet.");</script>';}
164.  
165. $error = $_GET['Billedeupload'];
166. if($error=='toolarge'){echo '<script>error("Billedet er for stort. Må maks fylde 2mb.");</script>';}
167.  
168. $error = $_GET['Billedeupload'];
169. if($error=='filtypeforkert'){echo '<script>error("Upload venligst JPG eller PNG filer.");</script>';}
170.  
171. $error = $_GET['Billedeupload'];
172. if($error=='fejl'){echo '<script>error("Der skete en fejl. prøv igen.");</script>';}
173.  
174. $succes = $_GET['password'];
175. if($succes=='changed'){echo '<script>success("Din adgangskode blev opdateret.");</script>';}
176.  
177. $succes = $_GET['konto'];
178. if($succes=='oprettet'){echo '<script>success("Velkommen til! Udfyld dine informationer, så en potentiel køber kan kontakte dig.");</script>';}
179.  
180. ?>
181. </body>
182. </html>