Securing PHP Script

Hello, I have an PHP Script, its for Voting my Site / Server Now on this script they have to enter their username and password and character name. This voting system allows 1 Account / Username to vote every 12 hours only also it has an IP check that each IP can vote every 12 hours only Now the problem is i think my scripts has a hole or injection vulnerability or maybe they are using proxy because on my vote ranking i see some people having 10,000 vote number but this is impossible because of 12 hours check so it means they are cheating.. Now i need you guys to investigate the scripts and see if you find any holes for cheating, i already added anti proxy but i dont think its working. I am attaching my php scripts. Thank You ## Deliverables 1) Complete and fully-functional working program(s) in executable form as well as complete source code of all work done. 2) Deliverables must be in ready-to-run condition, as follows? (depending on the nature? of the deliverables): a)? For web sites or? other server-side deliverables intended to only ever exist in one place in the Buyer's environment--Deliverables must be installed by the Seller in ready-to-run condition in the Buyer's environment. b) For all others including desktop software or software the buyer intends to distribute: A software? installation package that will install the software in ready-to-run condition on the platform(s) specified in this bid request. 3) All deliverables will be considered "work made for hire" under U.S. Copyright law. Buyer will receive exclusive and complete copyrights to all work purchased. (No GPL, GNU, 3rd party components, etc. unless all copyright ramifications are explained AND AGREED TO by the buyer on the site per the coder's Seller Legal Agreement). ## Platform APache PHP Xampp for Windows Server 2003 Windows Server 2003 Enterprise Edition R2