Thread: Reviews Link

Page 1 of 2 12 LastLast
Results 1 to 10 of 14
  1. #1
    Join Date
    Aug 2008
    Location
    Sydney Australia
    Posts
    471
    Plugin Contributions
    0

    Default Reviews Link

    Hi All,

    Server Information:
    Server Host: p3plzcpnl503484.prod.phx3.secureserver.net (xxxxxxxx)
    Database: xxxx_live158Store
    Home: /home/xxxxxxxx/public_html/Server
    OS: Linux 4.18.0-477.27.2.lve.el8.x86_64
    Server Date: 16/11/2023 13:01:38
    Server Up Time: Disabled/UnavailableHTTP
    Server: ApachePHP
    Version: 8.0.30 (Zend: 4.0.30)PHP
    File Uploads: OnUpload
    Max Size: 1024MPHP
    Memory Limit: -1POST
    Max Size: 1024M
    Database Engine: MySQL 10.6.14-MariaDB-cll-lveDatabase
    Host: localhost (127.0.0.1)
    Database Date: 16/11/2023 13:01:38
    Database Data Size: 245,288 kBDatabase
    Index Size: 36,309 kBMySQL Slow Query Log
    Status: OffMySQL Slow Query
    Log File: p3plzcpnl503484-slow.log
    MySQL Mode: NO_ENGINE_SUBSTITUTIONView the database configuration variables

    I am trying to find the link location for the reviews because on my live site that is running 1.5.5E the link in the side box is coming up as https://www.outdoorking.com/reviews?...dbmvded3vd6pn7 HTTP Error 500

    I am wanting to put a link-up on the new site to the reviews, which has 1.5.8a version

    Any help to the correct link for the 1.5.8a version would be a great help.

  2. #2
    Join Date
    Aug 2008
    Location
    Sydney Australia
    Posts
    471
    Plugin Contributions
    0

    Default Re: Reviews Link

    This is the error message that I am getting

    [18-Nov-2023 12:49:24 Australia/Sydney] Request URI: /reviews?zenid=cmn3fsvroajkdbmvded3vd6pn7, IP address: 45.125.247.xxx
    --> PHP Fatal error: Cannot redeclare securityPatchSanitizePostVariableId() (previously declared in /home/xxxx/public_html/includes/extra_configures/security_patch_v138_20080919.php:33) in /home/xxxx/public_html/includes/extra_configures/security_patch_v138_20080919.php on line 33.

    That is for the 1.5.5e version of zencart

  3. #3
    Join Date
    Sep 2009
    Location
    Stuart, FL
    Posts
    12,285
    Plugin Contributions
    87

    Default Re: Reviews Link

    I'll suggest searching for securityPatchSanitizePostVariableId using the zc155e admin's Tools :: Developer's Tool Kit. For zc155e, the only place that that function's definition is present is in the /includes/extra_configures/security_patch_v138_20080919.php file.

    Whatever module that also shows up in should have that function removed ... possibly a copy of the above file?

    P.S. Please don't intermix multiple unrelated questions in a single thread; it'll make it much more difficult for someone with the same problem to find matching reports.

  4. #4
    Join Date
    Aug 2008
    Location
    Sydney Australia
    Posts
    471
    Plugin Contributions
    0

    Default Re: Reviews Link

    Quote Originally Posted by lat9 View Post
    I'll suggest searching for securityPatchSanitizePostVariableId using the zc155e admin's Tools :: Developer's Tool Kit. For zc155e, the only place that that function's definition is present is in the /includes/extra_configures/security_patch_v138_20080919.php file.

    Whatever module that also shows up in should have that function removed ... possibly a copy of the above file?

    P.S. Please don't intermix multiple unrelated questions in a single thread; it'll make it much more difficult for someone with the same problem to find matching reports.
    I removed the other files and now I am getting a blank page here https://www.outdoorking.com/reviews

    Am I missing something?

  5. #5
    Join Date
    Sep 2009
    Location
    Stuart, FL
    Posts
    12,285
    Plugin Contributions
    87

    Default Re: Reviews Link

    You've got a myDEBUG*.log file that is waiting patiently to tell you what's going on with that whitescreen.

  6. #6
    Join Date
    Aug 2008
    Location
    Sydney Australia
    Posts
    471
    Plugin Contributions
    0

    Default Re: Reviews Link

    Quote Originally Posted by lat9 View Post
    You've got a myDEBUG*.log file that is waiting patiently to tell you what's going on with that whitescreen.
    This is the log
    [19-Nov-2023 10:55:27 Australia/Sydney] Request URI: /reviews?zenid=cmn3fsvroajkdbmvded3vd6pn7, IP address: 66.249.83.196
    --> PHP Fatal error: Cannot redeclare securityPatchSanitizePostVariableId() (previously declared in /home/xxxx/public_html/includes/extra_configures/security_patch_v138_20080919.php:33) in /home/xxxx/public_html/includes/extra_configures/security_patch_v138_20080919.php on line 33.

    This is what is in the original file and I removed line 33 but still the same.
    <?php
    /**
    * Security Patch v1.3.8 20080919
    *
    * @package initSystem
    * @copyright Copyright 2003-2010 Zen Cart Development Team
    * @license http://www.zen-cart.com/license/2_0.txt GNU Public License V2.0
    * @version $Id: security_patch_v138_20080919.php 15882 2010-04-11 16:37:54Z wilt $
    */
    /**
    * Security Patch
    *
    * Multiple Vulnerabilities
    *
    * SQL Injection - $_POST['products_id']
    * SQL Injection - $_POST['id']
    *
    * Please Note : This file should be placed in includes/extra_configures and will automatically load.
    *
    */
    if (isset($_POST['id']) && is_array($_POST['id']) && count($_POST['id']) > 0)
    {
    $_POST['id'] = securityPatchSanitizePostVariableId($_POST['id']);
    }
    if (isset($_POST['products_id']) && is_array($_POST['products_id']) && count($_POST['products_id']) > 0)
    {
    $_POST['products_id'] = securityPatchSanitizePostVariableProductsId($_POST['products_id']);
    }
    if (isset($_POST['notify']) && is_array($_POST['notify']) && count($_POST['notify']) > 0)
    {
    $_POST['notify'] = securityPatchSanitizePostVariableProductsId($_POST['notify']);
    }
    function securityPatchSanitizePostVariableId ($arrayToSanitize)
    {
    foreach ($arrayToSanitize as $key => $variableToSanitize)
    {
    {
    if (is_integer($key))
    {
    if (is_array($arrayToSanitize[$key]))
    {
    $arrayToSanitize[$key] = securityPatchSanitizePostVariableId($arrayToSanitize[$key]);
    }
    else
    {
    $arrayToSanitize[$key] = (int) $variableToSanitize;
    }
    }
    }
    if (preg_replace('/[0-9a-zA-z:_]/', '', $key) != '')
    unset($arrayToSanitize[$key]);
    }
    return $arrayToSanitize;
    }
    function securityPatchSanitizePostVariableProductsId ($arrayToSanitize)
    {
    foreach ($arrayToSanitize as $key => $variableToSanitize)
    {
    {
    $arrayToSanitize[$key] = preg_replace('/[^0-9a-fA-F:.]/', '', $variableToSanitize);
    }
    if (preg_replace('/[0-9a-zA-z_:.]/', '', $key) != '')
    unset($arrayToSanitize[$key]);
    }
    return $arrayToSanitize;
    }

  7. #7
    Join Date
    Aug 2008
    Location
    Sydney Australia
    Posts
    471
    Plugin Contributions
    0

    Default Re: Reviews Link

    ?Does anyone have an answer to my last post

  8. #8
    Join Date
    Oct 2008
    Location
    Croatia
    Posts
    1,536
    Plugin Contributions
    19

    Default Re: Reviews Link

    Use the Developers Toolkit and search all files for "function securityPatchSanitizePostVariableId" (without quotation marks). It's probably being declared elsewhere. Depending on where, you can leave the "main" one as is, and the others could be wrapped in
    Code:
    if(!function_exists('securityPatchSanitizePostVariableId')) {
        // function here
    }
    Last edited by balihr; 21 Nov 2023 at 10:39 AM. Reason: code wrap

  9. #9
    Join Date
    Aug 2008
    Location
    Sydney Australia
    Posts
    471
    Plugin Contributions
    0

    Default Re: Reviews Link

    Quote Originally Posted by balihr View Post
    Use the Developers Toolkit and search all files for "function securityPatchSanitizePostVariableId" (without quotation marks). It's probably being declared elsewhere. Depending on where, you can leave the "main" one as is, and the others could be wrapped in
    Code:
    if(!function_exists('securityPatchSanitizePostVariableId')) {
        // function here
    }
    That gave me a blank main page and the only file that came up was this one doing the search: /home/xxxx/public_html/includes/extra_configures/security_patch_v138_20080919.php

    I changed line 33 and then got the blank main page. I then had to change back to get my main page to show.

    This is proving to be a real pain in the but trying to fix the issue with the link to the reviews page.

    Would it be better to just remove the security patch totally?
    Last edited by Bruce1952; 22 Nov 2023 at 01:10 AM.

  10. #10
    Join Date
    Sep 2009
    Location
    Stuart, FL
    Posts
    12,285
    Plugin Contributions
    87

    Default Re: Reviews Link

    Since that file is not part of the zc158 distribution, it can be safely removed.

 

 
Page 1 of 2 12 LastLast

Similar Threads

  1. v155 Link to reviews goes to a 404 page
    By CaroleAs in forum General Questions
    Replies: 2
    Last Post: 8 Jan 2018, 02:33 AM
  2. Reviews link
    By FragaGeddon in forum All Other Contributions/Addons
    Replies: 6
    Last Post: 7 Sep 2010, 05:19 PM
  3. Read Reviews Link
    By autoace in forum Templates, Stylesheets, Page Layout
    Replies: 0
    Last Post: 20 Apr 2010, 09:51 PM
  4. Product page - how to show a link to the reviews page and reviews count?
    By Ronson in forum Templates, Stylesheets, Page Layout
    Replies: 3
    Last Post: 26 Mar 2009, 11:45 PM
  5. "Reviews Pending Approval" Link is active, but no reviews pending... problem...
    By dontknowwhatimdoing in forum Customization from the Admin
    Replies: 7
    Last Post: 12 Aug 2008, 05:01 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
disjunctive-egg
Zen-Cart, Internet Selling Services, Klamath Falls, OR