View Issue Details

IDProjectCategoryView StatusLast Update
0005064OXID eShop (all versions)4.02. Session handlingpublic2015-12-01 10:46
Status acknowledgedResolutionopen 
Product Version4.7.4 / 5.0.4 revision 57063 
Target VersionFixed in Version 
Summary0005064: Captcha code does not work with uppercase
DescriptionIf a customer is to enter a captcha with a uppercase letter he gets the message that his Captcha entry is incorrect.
Steps To ReproduceF5, F5, F5, F5, F5, F5, Captcha with uppercase -> enter Captcha -> -.- oh wrong input -> ???
Additional InformationThe $sMacHash and $sHash params are not in the aCaptchaHash variable from the Session. See Funktion _passFromSession of oxcaptcha
ThemeNot defined
PHP Version5.3
Database VersionNot defined



2013-07-11 17:38

reporter   ~0008895

Problem is not the uppercase letter in the image. it seems to be that encoding and decoding (strMan & strRem) does not work correctly (or maybe configkey which is loaded and used for this operation).

What correct is: the decoding in the ver-image shows up uppercase letters if this problem occurs


2013-07-12 09:01

reporter   ~0008896

The bug is located in the function "getImageUr"l in "oxcapture".

Here we have

 $sUrl = $this->getConfig()->getCoreUtilsURL() . "verificationimg.php?e_mac=";
 $sUrl .= oxRegistry::getUtils()->strMan( $this->getText() );

oxRegistry::getUtils()->strMan( $this->getText() )
may contain the "+" character, which the image resolves as blank, because it is not url-encoded.

So the fix is:

 $sUrl = $this->getConfig()->getCoreUtilsURL() . "verificationimg.php?e_mac=";
 $sUrl .= urlencode(oxRegistry::getUtils()->strMan( $this->getText() ));

which should be adopted to the original sources.