Thank you for your kind comments Ajeh!Originally Posted by Ajeh
Works pretty well, nice job ...
However, hacker that I am, there is a way to trick it on going to a products_info page by changing the URL cPath ...
Interesting enough, removing the cPath and just using the products_id IS protected ...
Something to play with:
/index.php?main_page=product_info&cPath=69&products_id=186 <-- blocked
/index.php?main_page=product_info&cPath=2&products_id=186 <-- sneaks in
Granted you have to really want to get in there and are not a "good" customer ... so, this might not be worth the hassel to try to fix ... otherwise, somewhere you may need one more check that evil is not being committed ...
It is the 'good hackers' that reveal flaws - so many thanks for that, I have a go at this in v2.1. No doubt more comments will surface from fellow zenners....
Cheers / Frank
Results 1 to 10 of 188
Threaded View
-
8 May 2013, 10:29 PM #4
Deceased
- Join Date
- Nov 2007
- Location
- Sunny Coast, Australia
- Posts
- 3,378
- Plugin Contributions
- 9
Re: Category Specific Access Restriction (CSAR) - [Support Thread]
Reply With QuoteSimilar Threads
-
Category Specific Restriction of Product Price Display (OLD v1 mod)
By frank18 in forum All Other Contributions/AddonsReplies: 40Last Post: 26 May 2013, 11:38 PM -
v150 [Not a bug] Category Specific Access Restriction
By raf696 in forum Bug ReportsReplies: 3Last Post: 17 Mar 2012, 03:26 AM -
v150 Category Specific Access Restriction
By raf696 in forum All Other Contributions/AddonsReplies: 1Last Post: 16 Mar 2012, 10:25 PM -
v150 Category Specific Access Restriction
By raf696 in forum All Other Contributions/AddonsReplies: 0Last Post: 13 Mar 2012, 07:36 PM -
Gallery Category support thread
By gjh42 in forum All Other Contributions/AddonsReplies: 26Last Post: 26 Sep 2008, 09:38 AM
