diff --git a/var/www/findFriend.php b/var/www/findFriend.php
index 702754b..a4e26f9 100644
--- a/var/www/findFriend.php
+++ b/var/www/findFriend.php
@@ -20,17 +20,17 @@
                 $sql_select = "SELECT count(username)";
                 $sql_from = "FROM contacts";
                 $sql_where = "WHERE username = input";
-                $sql_statement = $sql_select." ".$sql_from." ".$sql_where.;
-                if(($db_connection->query($sql_statement) as $row) == 0)
-                    //username doesn't exist
+                $sql_statement = $sql_select." ".$sql_from." ".$sql_where."";
+                if(($db_connection->query($sql_statement)) == 0)
+                   echo "username doesn't exist";
                     
                 $sql_select = "SELECT count(username)";
                 $sql_from = "FROM friendList";
-                $sql_where = "WHERE username = input and friend = ".$_SESSION["loggedInUser"].;
-                $sql_statement = $sql_select." ".$sql_from." ".$sql_where.;
-                if(($db_connection->query($sql_statement) as $row) == 0)
+                $sql_where = "WHERE username = input and friend = ".$_SESSION["loggedInUser"]."";
+                $sql_statement = $sql_select." ".$sql_from." ".$sql_where."";
+                if(($db_connection->query($sql_statement)) == 0)
                 {
-                    $sql_statement = "UPDATE friendList SET confirm = true WHERE username = input and friend = ".$_SESSION["loggedInUser"].;
+                    $sql_statement = "UPDATE friendList SET confirm = true WHERE username = input and friend = ".$_SESSION["loggedInUser"]."";
                     $db_connection->query($sql_statement);
                     $sql_statement = "INSERT INTO friendList VALUES (".$_SESSION["loggedInUser"].", input, true)";
                     $db_connection->query($sql_statement);
diff --git a/var/www/pendingFriend.php b/var/www/pendingFriend.php
index a720e28..0ac21c4 100644
--- a/var/www/pendingFriend.php
+++ b/var/www/pendingFriend.php
@@ -1,52 +1,41 @@
-<!DOCTYPE html>
-<html>
-<body>
-<style>
-body 
-{
-  background-color: #3B5998;
-}
-</style>
-<h2><font color="white">friendbook</h2>
-
-
 <?php
-$servername = "localhost";
-$username = "web";
-$password = "Password456";
-$dbname = "computer";
-
-// Create connection
-$conn = mysqli_connect($servername, $username, $password, $dbname);
-// Check connection
-if (!$conn) 
-{
-    die("Connection failed: " . mysqli_connect_error());
-}
-
-$sql = "SELECT friend FROM friendList WHERE username = 'user1' and confirm = false";
-$result = mysqli_query($conn, $sql);
-
-
-if (mysqli_num_rows($result) > 0) 
-{
-    // output data of each row
-    while($row = mysqli_fetch_assoc($result)) 
-    {
-        echo "friends: " . $row["friend"]. ;
-	echo "<button type='button' onclick='window.location.href = 'acceptFriend.php $row['friend']''>Accept Friend Request</button>";
-	echo "<br>";
-    }
-} 
-else 
-{
-    echo "0 results";
-}
-
+    require 'common.php';
+    require 'loginRequired.php';
 ?>
 
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+    <head>
+        <title>friendbook Pending Friend Requests</title>
+        <meta http-equiv="content-type" content="text/html; charset=utf-8"/>
+        <link rel="stylesheet" type="text/css" href="styling.css">
+    </head>
+    <body>
+        <!--#include virtual="header.html" -->
+        <!--#include virtual="topNavBar.html" -->
+        <?php
+            try{
+                echo '<pre>';
+                echo "Pending Friends:\n\n";
+                $sql_select = "SELECT friend";
+                $sql_from = "FROM friendList";
+                $sql_where = "WHERE username = ".$_SESSION["loggedInUser"]."";
+                $sql_statement = $sql_select." ".$sql_from." ".$sql_where."";
+                foreach($db_connection->query($sql_statement) as $row)
+                {
+                    echo "".$row["friend"]."";
+                    echo "<br>";
+                }
 
-
-</body>
+                echo '</pre>';
+            }catch(PDOException $e){
+                echo "PDOException: ".$e->getMessage().PHP_EOL;
+            }catch(Exception $e){
+                echo "Exception: ".$e->getMessage().PHP_EOL;
+            }
+        ?>
+    </body>
 </html>
-
+<?php
+    $db_connection = null;
+?>