View Issue Details

IDProjectCategoryView StatusLast Update
0006083OXID eShop (all versions)1.01. Products (product, categories, manufacturer, promotions etc.)public2017-09-04 11:55
Reporterl.niewalda Assigned To 
PriorityhighSeveritymajorReproducibilityalways
Status resolvedResolutionfixed 
Product Version4.9.3 / 5.2.3 
Fixed in Version4.10.0 / 5.3.0 
Summary0006083: article sorting fields not verified against valid field from admin settings
Descriptionusing a listorderby field in alist which is not a aviable in database schema results in a mysql query error and redirects to a "Shop offline!".

the invalid sorting row parameter is also saved in session which results in a "Shop offline!" message after trying to open any category page after that.

no check against possible/valid sortfields entered in the "Database Fields Product Lists can be sorted after" in admin is performed.
Steps To Reproduceinsert custom not aviable row in listorderby get parameter (here foobar):

http://demoshop.oxid-esales.com/professional-edition/Kiteboarding/Kites/?ldtype=infogrid&_artperpage=10&listorderby=foobar&listorder=asc&pgNr=0&cl=alist&searchparam=&cnid=0f4fb00809cec9aa0910aa9c8fe36751

try to open any category after that: http://demoshop.oxid-esales.com/professional-edition/Kiteboarding/Kites/
TagsNo tags attached.
ThemeAzure
BrowserAll
PHP VersionNot defined
Database VersionNot defined

Relationships

parent of 0006579 resolvedsaulius.stasiukaitis OXID eShop (all versions) Sorting by self-created fields in the oxarticles does not work 
parent of 0006445 resolvedsaulius.stasiukaitis Flow theme sorting by price doesn't work 
related to 0005241 confirmedSvenBrunk OXID eShop (all versions) Sorting is saved to session—which is not nice. 

Activities

QA

2016-06-03 10:16

administrator   ~0011619

https://github.com/OXID-eSales/oxideshop_ce/pull/394

anton.fedurtsya

2016-06-09 14:49

administrator   ~0011639

Thank you, the pull request was just merged to master and ported to 5.3 branch.