Hi,
I am following the instrctions for the post for the XSS protection patch:
http://www.zen-cart.com/forum/showthread.php?t=142927
I have inserted the new code into the index.php file and I received this error message when logging into my admin panel:
(calling admin file, admin in this post, but I have previously renamed it)
Warning: require(DIR_WS_INCLUDESheader.php) [function.require]: failed to open stream: No such file or directory in .../public_html/admin/index.php on line 1
Warning: require(DIR_WS_INCLUDESheader.php) [function.require]: failed to open stream: No such file or directory in .../public_html/admin/index.php on line 1
Fatal error: require() [function.require]: Failed opening required 'DIR_WS_INCLUDESheader.php' (include_path='.:/usr/lib/php:/usr/local/lib/php') in .../public_html/admin/index.php on line 1
I have obviously done something wrong! I have double and triple checked that I am inserting the code into the correct line, and this is all fine.
Also when following the patch recommendations for the customer.php, I also get an error when searching my customers in the admin panel.
Any ideas what I have done wrong?
Thanks in advance,
Jeff
Results 1 to 3 of 3
-
12 Dec 2009, 12:19 AM #1
Zen Follower
- Join Date
- Oct 2009
- Posts
- 298
- Plugin Contributions
- 0
Getting errors after doing XSS patch
-
12 Dec 2009, 12:25 AM #2
Sensei
- Join Date
- Jan 2004
- Posts
- 66,373
- Blog Entries
- 7
- Plugin Contributions
- 274
Re: XSS patch giving errors
Hmmm ... since it's talking about an error on "line 1", that suggests that you're using a text editor that isn't properly preserving line-breaks. Thus, PHP is being forced to see all the instructions on one line ... which will cause you problems.
This is very common when using the crappy browser-based file-edit tools offered by hosting companies, instead of using the safer approach of downloading the file via FTP, using a reliable text editor, and re-uploading the updated file back to the server.
If you've not got a reliable text editor, I suggest Notepad++: http://notepad-plus.sf.net
You'll want to redo the edits, preferably starting from good clean copies of those files from before you touched them..
Zen Cart - putting the dream of business ownership within reach of anyone!
Donate to: DrByte directly or to the Zen Cart team as a whole
Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.
-
12 Dec 2009, 03:15 AM #3
Zen Follower
- Join Date
- Oct 2009
- Posts
- 298
- Plugin Contributions
- 0
Re: Getting errors after doing XSS patch
Thank you so much for your response, Dr Byte.
I am sure that is what is happening now that you've explained it. I'll go try it again using a proper php editor program.
Thanks again for your help!
Jeff
Similar Threads
-
XSS Flaw Patch
By wilt in forum Zen Cart Release AnnouncementsReplies: 0Last Post: 8 Oct 2012, 01:48 PM -
XSS protection patch - and - PCI Scans - patch
By janissaire in forum Templates, Stylesheets, Page LayoutReplies: 3Last Post: 28 Jan 2010, 09:32 PM -
Express errors after patch only without PP cookies
By micharu in forum PayPal Express Checkout supportReplies: 2Last Post: 8 Feb 2007, 11:58 PM
Bookmarks