Detailed description of the sanitation of url parameters
I am investigating a problem with an add-on that I think is related to the (POST) sanitation measures put in place in ZC 1.55 for URL parameters.
I read in the last couple of days a detailed description of these measures...but I cannot find this information now.
Can someone please post a link...
thanks Steve
Re: Detailed description of the sanitation of url parameters
Re: Detailed description of the sanitation of url parameters
Thanks
Quote:
...is also in the readme
I thought that was where I had seen it but I still cannot find where...!!
Re: Detailed description of the sanitation of url parameters
If I want to use a new GET parameter on certain pages, I think it needs to be added to the $params_to_check array in
includes\application_top.php,
Is there a mechanism to add the new parameter dynamically/not touch core code?
Or it is this?
https://docs.zen-cart.com/dev/code/a...ion-in-plugins
Re: Detailed description of the sanitation of url parameters
Quote:
Originally Posted by
torvista
If I want to use a new GET parameter on certain pages, I think it needs to be added to the $params_to_check array in
includes\application_top.php,
Is there a mechanism to add the new parameter dynamically/not touch core code?
Or it is this?
https://docs.zen-cart.com/dev/code/a...ion-in-plugins
Are you trying to address sanitization on the admin side, the catalog side, or both?
The first part about an array within the includes/application_top.php file is catalog side, while the linked article is for admin.
I don't see that there is any direct ability to modify the contents of those arrays without directly editing the file. It would be possible either before or after this area to do something similar.
Re: Detailed description of the sanitation of url parameters