Results 1 to 4 of 4
  1. #1
    Join Date
    Oct 2005
    Posts
    7
    Plugin Contributions
    0

    Failure to apply anti-SQL injections guidelines

    I am using :
    Siteground host
    Fantastico was used to initially install Zen Cart v1.3.0.2
    Zen Cart v1.3.0.2
    Filezilla ftp program
    Notepad to apply edits to scripts

    I received an e-mail from Zen Cart support team to apply changes to specific files
    in order to prevent SQL injections in my shop.

    I used Filzilla and notepad to find the code to be changed
    I applied simple copy paste method

    The result was disaster!

    The files I viewed and the files I changed all lost their return characters.
    They are just one big string.

    The main problem is with application_top.php
    I tried to re enter all the return characters but I get alll sorts of errors, the code is
    a big mess.

    I do not have a backup of application_top.php

    I think I will have a heart attack.

    Please help!!!

  2. #2
    Join Date
    Jan 2005
    Location
    Lake Havasu, AZ
    Posts
    1,149
    Plugin Contributions
    0

    Default Re: Failure to apply anti-SQL injections guidelines

    I have zipped the files and attached them for you. These are ONLY the security fix applied files.

    Hope that helps :)


    EDIT: Attachment removed so that people do not download it and install on the wrong version. Please just follow the edit instructions directly.
    When the world gets in my face I say Have A Nice Day.
    * I DO Think and I HAVE BEEN Zenned - therefore, I AM * I donate - do you?
    Custom Templates and Zen Services CRS Designs, Inc.

  3. #3
    Join Date
    Oct 2005
    Posts
    7
    Plugin Contributions
    0

    Default Re: Failure to apply anti-SQL injections guidelines

    TinaS I thank you so much for your quick answer.
    If I could I would kiss the ground you walk on.
    But as I suspected from the size of application_top.php you send me (5KB to replace the existing 41KB) I didn't get anything to work.

    The answer is this Zen Cart 1.2.5!!!
    Because there is no reference of my current version in admin's homepage I thought
    that my version is 1.3.0.2 but in reality is 1.2.5

    I know what you are thinking but I assure you I am not that stupid!

    Any idea where I can get the 1.2.5 correct files before I apply the upgrade?

    Thank you

  4. #4
    Join Date
    Oct 2005
    Posts
    7
    Plugin Contributions
    0

    Default Re: Failure to apply anti-SQL injections guidelines

    No worries I found the 1.2.5 version in sourceforge and have made the replacements needed.

    If someone is to deal with computers he needs to be calm, very calm in a Zen kind of way.

    Thank you TinaS
    Great photo by the way...

 

 

Similar Threads

  1. SQL Failure installing Super Order 2.0
    By Loupblanc in forum All Other Contributions/Addons
    Replies: 0
    Last Post: 28 Oct 2007, 10:25 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
disjunctive-egg