View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0007802 | OXID eShop (all versions) | 1.04. Content, static (register, contact etc.) pages | public | 2025-06-13 10:36 | 2025-06-13 14:34 |
| Reporter | suabo | Assigned To | |||
| Priority | normal | Severity | minor | Reproducibility | always |
| Status | feedback | Resolution | open | ||
| Summary | 0007802: Content page allows page number parameter in SEO-URL | ||||
| Description | There is a major Problem in the Frontend-Controller since it contains the logic to add a page number to a url. This should only be used for article lists. Because of that fact you can reach every content page with any random number after it. For example: https://demoshop.oxid-esales.com/Impressum/123/ This shouldn't be possible, even if the page shows a robot tag to not index it's not ideal. I looked up the logic for the lists view and there is a validation of the page to display and also an redirect if the page doesn't exist. For example: https://demoshop.oxid-esales.com/Autos/123/ will redirect you to: https://demoshop.oxid-esales.com/Autos/ Since there is no default pagination and list view of content in OXID there shouldn't be page numbers allowed in content SEO-URLs. | ||||
| Tags | No tags attached. | ||||
| Theme | All | ||||
| Browser | Not defined | ||||
| PHP Version | Not defined | ||||
| Database Version | Not defined | ||||
|
|
Dear Suabo, thank you for reporting this issue. To my knowlegde you can always reach every content pages. Private Sales enabled this is also true. There is no additional problem if you append a number aka pagination. If you have a scenario where this is different, please provide feedback per E-mail to [email protected] referencing this issue. Also please provide feedback of a scenario where pagination for content page is a issue with impact. At the moment i would acknowledge this issue, but missing impact, only with low priority. Best Regards QA -SG- |
