session variable being changed
I have a protected area of a site, with several session variables, e.g. 'cID'. However, I've discovered that if a member, whilst logged in, goes back to the unrestricted public area and views a page with a different cID number, then clicks the 'back to the members area' link, the old cID number (that the member logged in with) has been changed to the new cID number (which means he can view pages that he shouldn't be able to - because they belong to a group with a different cID ).
I think the following may be the cause of the problem, which I've put on the public pages so that the session values are retained:
<?php if(!session_id()) session_start(); ?>
Any suggestions? This is rather urgent!