Looks like each control is producing a different "CESecurity" code.
The first control fails here:-
if ($CESecurity!=$_SESSION['CESecurity'])
{
print "The area you are attempting to access is forbidden";
exit();
}
Looks like the second control overwrites the first ones CESecurity session code.
Shouldn't these be the same?
Shouldn't the "subsequent" instruction take care of more than one control per page?
Thanks