View Issue Details

IDProjectCategoryView StatusLast Update
0005611OXID eShop (all versions)4.04. Securitypublic2014-03-11 11:25
Reportertomas_liubinas 
PriorityhighSeveritycriticalReproducibilityalways
Status resolvedResolutionfixed 
Product Version4.7.11 / 5.0.11 
Target Version4.7.12 / 5.0.12Fixed in Version4.7.11 / 5.0.11 
Summary0005611: Parameter is not converted to special chars
DescriptionPassed parameter in some circumstances is not converted to special chars.
TagsNo tags attached.
ThemeBoth
BrowserAll
PHP Versionany
MySQL Versionany

Relationships

related to 0005404 resolvedtomas_liubinas Parameter is not converted to special chars 

Activities

tomas_liubinas

2014-01-30 14:59

reporter   ~0009457

In order to fix this problem basically two php files were changed:

in Details::getTag()
existing code:
 return oxConfig::getParameter("searchtag", 1);
should be replaced to:
 return oxConfig::getParameter("searchtag", false);

in Tag:getTag()
existing code:
 $this->_sTag = oxConfig::getParameter("searchtag", 1);
should be replaced to:
 $this->_sTag = oxConfig::getParameter("searchtag", false);