Hotclutch

Use this for debugging.

Use this for debugging.

The 2nd error is due to the variable $res not being initialised. You can try adding $res = ""; above line 128 and see if that resolves the error. The 1st error is due to an undefined constant, assuming token is meant to be a constant, and its not a typo ($token perhaps). maybe someone who knows this script can shed more light.

The error is due to how MySQL is configured on the server, something you have no control over. You need to speak to someone else at your host's technical support about the issue. Or if they don't care to help you, then switch hosts. The host you choose depends a little on your geographic location, and you should do your homework on the hosting company so that you don't have to keep switching hosts in future. https://stackoverflow.com/questions/33142095/impossible-to-write-to-binary-log-since-binlog-format-statement-and-at-least-o

There are no fixes for those vulnerabilities as far as I know, and BS3 has been at end of life for a while now. Current BS version is 5. Just updating the bootstrap files will break the site, so there is no easy path for you to upgrade to. Your options are basically to migrate the shop to one of the previous CE osCommerce's based on BS4, or to wait for the new official osCommerce to be released and migrate to that.

define('ENABLE_SSL', false); // secure webserver for checkout procedure? You only need to set ENABLE_SSL to true. define('HTTP_SERVER', ''); // eg, http://localhost - should not be empty for productive servers define('HTTPS_SERVER', ''); // eg, https://localhost - should not be empty for productive servers And these 2 defines you can change the values to https... That's all you need to do. If your site is breaking it could be due to hardcoded links in the code pointing to http, especially stylesheets.

This works well.

you make a php file with that contents and copy it to your site's root directory. Then call the script from your browser - www.yourdomain.com/script.php; Delete it when you're done.

You can post your configure files also with the database information removed.

This user had a similar problem and it appears to be server related: To search files on your server you can use the following script: <?php $command = "grep -ri '127.0.0.1' ./*"; $output = shell_exec($command); echo "$output"; echo "Grep job over."; ?>

So .htaccess is not the only place where you can specify a redirect to happen. You can also write a php script to do that.

Click on the arrow - post above. I don't see anything in your application_top.php ... there could be in other files though.

This code of yours in the htaccess is not something a hacker would put. And assuming you did not put it there, then it must be someone you let work on your shop. That would be the best place to enquire. If you want to post the contents of your application_top.php here, maybe someone can see something that ought not to be there. The other errors you post must be due to you changing your php version to 7.

wrt SEO - I would not post for SEO work in this forum's commercial enquiries. This is not a SEO forum. Page experience is going to be a ranking factor as of soon. You may have already noticed the Page Experience tab in webmaster tools - ( hence your post here perhaps ? ) https://developers.google.com/search/docs/guides/page-experience