Not sure how the code got like that as we never changed anything the wizard wrote, but your correction worked. Thanks.
I have one other question. We need to add code to our site that checks for empty or malicious entries on the checkout.php and confirm.php pages. Does WebAssist have any written tutorials on security with eCart pages or other suggestions on how to protect the pages the wizard writes?