History | Log In     View a printable version of the current page. Get help!  
   HOME       BROWSE PROJECT       FIND ISSUES   
    QUICK SEARCH:  
Issue Details (XML | Word)

Key: OSC-423
Type: Bug Bug
Status: Closed Closed
Resolution: Fixed
Priority: Minor Minor
Assignee: Harald Ponce de Leon
Reporter: Sandro Felicioni
Votes: 0
Watchers: 1
Operations

If you were logged in you would be able to see more operations.
osCommerce Core

It's still possible to add more than the max allowed address book entries with a little workaround..

Created: 29/Dec/07 06:27 PM   Updated: 03/Jan/08 06:36 PM
Return to search
Component/s: None
Affects Version/s: 2.2 RC 1
Fix Version/s: 2.2 RC 2

File Attachments: 1. HTML File Codesnippet1.html (14 kb)
Environment: well, I guess every operating system..


 Description  « Hide
I just checked the address_book_process.php file and found some bugs..

Let's pretend the user already reached the max allowed address books entries and wants to create a new one. By default it's not possible, but when somebody knows the code, it's easy to write a workaround for this..

The problem is, that when you submit the form in order to create a new address book entry, it's going to be added before it has been checked if the max allowed entries is reached..Therefore it's not going to display an error message!

Here is my little hack in order that you can check what I said. You just have to copy this code below to a new html file and change the action attribute in the form tag. (of course you have to change the osCsid and the path to the file)

The solution is simple: put the check clausle before the insert clausle..

Codesnippet:

<html>
<head>
</head>
<body>

<form name='addressbook' action='http://localhost/_osCommerce/address_book_process.php?osCsid=2c0a7f02262a145707b0575aa58f06a3' method='post'>


<table border="0" width="100%" cellspacing="0" cellpadding="0">
      <tr>
        <td><table border="0" width="100%" cellspacing="0" cellpadding="0">
          <tr>
            <td class="pageHeading">Adressbuch: Neuer Eintrag</td>

            <td class="pageHeading" align="right"><img src="images/table_background_address_book.gif" border="0" alt="Adressbuch: Neuer Eintrag" title=" Adressbuch: Neuer Eintrag " width="57" height="40"></td>
          </tr>
        </table></td>
      </tr>
      <tr>
        <td><img src="images/pixel_trans.gif" border="0" alt="" width="100%" height="10"></td>
      </tr>
      <tr>
        <td><table border="0" width="100%" cellspacing="0" cellpadding="2">

  <tr>
    <td><table border="0" width="100%" cellspacing="0" cellpadding="2">
      <tr>
        <td class="main"><b>Adressbuch: Neuer Eintrag</b></td>
        <td class="inputRequirement" align="right">* Notwendige Eingabe</td>
      </tr>
    </table></td>
  </tr>

  <tr>
    <td><table border="0" width="100%" cellspacing="1" cellpadding="2" class="infoBox">
      <tr class="infoBoxContents">
        <td><table border="0" cellspacing="2" cellpadding="2">
          <tr>
            <td class="main">Anrede:</td>
            <td class="main"><input type="radio" name="gender" value="m">&nbsp;&nbsp;Herr&nbsp;&nbsp;<input type="radio" name="gender" value="f">&nbsp;&nbsp;Frau&nbsp;<span class="inputRequirement">*</span></td>

          </tr>
          <tr>
            <td class="main">Vorname:</td>
            <td class="main"><input type="text" name="firstname">&nbsp;<span class="inputRequirement">*</span></td>
          </tr>
          <tr>
            <td class="main">Nachname:</td>

            <td class="main"><input type="text" name="lastname">&nbsp;<span class="inputRequirement">*</span></td>
          </tr>
          <tr>
            <td colspan="2"><img src="images/pixel_trans.gif" border="0" alt="" width="100%" height="10"></td>
          </tr>
          <tr>
            <td class="main">Firmenname:</td>
            <td class="main"><input type="text" name="company">&nbsp;</td>

          </tr>
          <tr>
            <td colspan="2"><img src="images/pixel_trans.gif" border="0" alt="" width="100%" height="10"></td>
          </tr>
          <tr>
            <td class="main">Strasse/Nr.:</td>
            <td class="main"><input type="text" name="street_address">&nbsp;<span class="inputRequirement">*</span></td>
          </tr>

          <tr>
            <td class="main">Stadtteil:</td>
            <td class="main"><input type="text" name="suburb">&nbsp;</td>
          </tr>
          <tr>
            <td class="main">Postleitzahl:</td>
            <td class="main"><input type="text" name="postcode">&nbsp;<span class="inputRequirement">*</span></td>

          </tr>
          <tr>
            <td class="main">Ort:</td>
            <td class="main"><input type="text" name="city">&nbsp;<span class="inputRequirement">*</span></td>
          </tr>
          <tr>
            <td class="main">Bundesland:</td>

            <td class="main">
<input type="text" name="state">&nbsp;<span class="inputRequirement">*</td>
          </tr>
          <tr>
            <td class="main">Land:</td>
            <td class="main"><select name="country"><option value="" SELECTED>Bitte w&auml;hlen</option><option value="1">Afghanistan</option><option value="2">Albania</option><option value="3">Algeria</option><option value="4">American Samoa</option><option value="5">Andorra</option><option value="6">Angola</option><option value="7">Anguilla</option><option value="8">Antarctica</option><option value="9">Antigua and Barbuda</option><option value="10">Argentina</option><option value="11">Armenia</option><option value="12">Aruba</option><option value="13">Australia</option><option value="14">Austria</option><option value="15">Azerbaijan</option><option value="16">Bahamas</option><option value="17">Bahrain</option><option value="18">Bangladesh</option><option value="19">Barbados</option><option value="20">Belarus</option><option value="21">Belgium</option><option value="22">Belize</option><option value="23">Benin</option><option value="24">Bermuda</option><option value="25">Bhutan</option><option value="26">Bolivia</option><option value="27">Bosnia and Herzegowina</option><option value="28">Botswana</option><option value="29">Bouvet Island</option><option value="30">Brazil</option><option value="31">British Indian Ocean Territory</option><option value="32">Brunei Darussalam</option><option value="33">Bulgaria</option><option value="34">Burkina Faso</option><option value="35">Burundi</option><option value="36">Cambodia</option><option value="37">Cameroon</option><option value="38">Canada</option><option value="39">Cape Verde</option><option value="40">Cayman Islands</option><option value="41">Central African Republic</option><option value="42">Chad</option><option value="43">Chile</option><option value="44">China</option><option value="45">Christmas Island</option><option value="46">Cocos (Keeling) Islands</option><option value="47">Colombia</option><option value="48">Comoros</option><option value="49">Congo</option><option value="50">Cook Islands</option><option value="51">Costa Rica</option><option value="52">Cote D&#039;Ivoire</option><option value="53">Croatia</option><option value="54">Cuba</option><option value="55">Cyprus</option><option value="56">Czech Republic</option><option value="57">Denmark</option><option value="58">Djibouti</option><option value="59">Dominica</option><option value="60">Dominican Republic</option><option value="61">East Timor</option><option value="62">Ecuador</option><option value="63">Egypt</option><option value="64">El Salvador</option><option value="65">Equatorial Guinea</option><option value="66">Eritrea</option><option value="67">Estonia</option><option value="68">Ethiopia</option><option value="69">Falkland Islands (Malvinas)</option><option value="70">Faroe Islands</option><option value="71">Fiji</option><option value="72">Finland</option><option value="73">France</option><option value="74">France, Metropolitan</option><option value="75">French Guiana</option><option value="76">French Polynesia</option><option value="77">French Southern Territories</option><option value="78">Gabon</option><option value="79">Gambia</option><option value="80">Georgia</option><option value="81">Germany</option><option value="82">Ghana</option><option value="83">Gibraltar</option><option value="84">Greece</option><option value="85">Greenland</option><option value="86">Grenada</option><option value="87">Guadeloupe</option><option value="88">Guam</option><option value="89">Guatemala</option><option value="90">Guinea</option><option value="91">Guinea-bissau</option><option value="92">Guyana</option><option value="93">Haiti</option><option value="94">Heard and Mc Donald Islands</option><option value="95">Honduras</option><option value="96">Hong Kong</option><option value="97">Hungary</option><option value="98">Iceland</option><option value="99">India</option><option value="100">Indonesia</option><option value="101">Iran (Islamic Republic of)</option><option value="102">Iraq</option><option value="103">Ireland</option><option value="104">Israel</option><option value="105">Italy</option><option value="106">Jamaica</option><option value="107">Japan</option><option value="108">Jordan</option><option value="109">Kazakhstan</option><option value="110">Kenya</option><option value="111">Kiribati</option><option value="112">Korea, Democratic People&#039;s Republic of</option><option value="113">Korea, Republic of</option><option value="114">Kuwait</option><option value="115">Kyrgyzstan</option><option value="116">Lao People&#039;s Democratic Republic</option><option value="117">Latvia</option><option value="118">Lebanon</option><option value="119">Lesotho</option><option value="120">Liberia</option><option value="121">Libyan Arab Jamahiriya</option><option value="122">Liechtenstein</option><option value="123">Lithuania</option><option value="124">Luxembourg</option><option value="125">Macau</option><option value="126">Macedonia, The Former Yugoslav Republic of</option><option value="127">Madagascar</option><option value="128">Malawi</option><option value="129">Malaysia</option><option value="130">Maldives</option><option value="131">Mali</option><option value="132">Malta</option><option value="133">Marshall Islands</option><option value="134">Martinique</option><option value="135">Mauritania</option><option value="136">Mauritius</option><option value="137">Mayotte</option><option value="138">Mexico</option><option value="139">Micronesia, Federated States of</option><option value="140">Moldova, Republic of</option><option value="141">Monaco</option><option value="142">Mongolia</option><option value="143">Montserrat</option><option value="144">Morocco</option><option value="145">Mozambique</option><option value="146">Myanmar</option><option value="147">Namibia</option><option value="148">Nauru</option><option value="149">Nepal</option><option value="150">Netherlands</option><option value="151">Netherlands Antilles</option><option value="152">New Caledonia</option><option value="153">New Zealand</option><option value="154">Nicaragua</option><option value="155">Niger</option><option value="156">Nigeria</option><option value="157">Niue</option><option value="158">Norfolk Island</option><option value="159">Northern Mariana Islands</option><option value="160">Norway</option><option value="161">Oman</option><option value="162">Pakistan</option><option value="163">Palau</option><option value="164">Panama</option><option value="165">Papua New Guinea</option><option value="166">Paraguay</option><option value="167">Peru</option><option value="168">Philippines</option><option value="169">Pitcairn</option><option value="170">Poland</option><option value="171">Portugal</option><option value="172">Puerto Rico</option><option value="173">Qatar</option><option value="174">Reunion</option><option value="175">Romania</option><option value="176">Russian Federation</option><option value="177">Rwanda</option><option value="178">Saint Kitts and Nevis</option><option value="179">Saint Lucia</option><option value="180">Saint Vincent and the Grenadines</option><option value="181">Samoa</option><option value="182">San Marino</option><option value="183">Sao Tome and Principe</option><option value="184">Saudi Arabia</option><option value="185">Senegal</option><option value="186">Seychelles</option><option value="187">Sierra Leone</option><option value="188">Singapore</option><option value="189">Slovakia (Slovak Republic)</option><option value="190">Slovenia</option><option value="191">Solomon Islands</option><option value="192">Somalia</option><option value="193">South Africa</option><option value="194">South Georgia and the South Sandwich Islands</option><option value="195">Spain</option><option value="196">Sri Lanka</option><option value="197">St. Helena</option><option value="198">St. Pierre and Miquelon</option><option value="199">Sudan</option><option value="200">Suriname</option><option value="201">Svalbard and Jan Mayen Islands</option><option value="202">Swaziland</option><option value="203">Sweden</option><option value="204">Switzerland</option><option value="205">Syrian Arab Republic</option><option value="206">Taiwan</option><option value="207">Tajikistan</option><option value="208">Tanzania, United Republic of</option><option value="209">Thailand</option><option value="210">Togo</option><option value="211">Tokelau</option><option value="212">Tonga</option><option value="213">Trinidad and Tobago</option><option value="214">Tunisia</option><option value="215">Turkey</option><option value="216">Turkmenistan</option><option value="217">Turks and Caicos Islands</option><option value="218">Tuvalu</option><option value="219">Uganda</option><option value="220">Ukraine</option><option value="221">United Arab Emirates</option><option value="222">United Kingdom</option><option value="223">United States</option><option value="224">United States Minor Outlying Islands</option><option value="225">Uruguay</option><option value="226">Uzbekistan</option><option value="227">Vanuatu</option><option value="228">Vatican City State (Holy See)</option><option value="229">Venezuela</option><option value="230">Viet Nam</option><option value="231">Virgin Islands (British)</option><option value="232">Virgin Islands (U.S.)</option><option value="233">Wallis and Futuna Islands</option><option value="234">Western Sahara</option><option value="235">Yemen</option><option value="236">Yugoslavia</option><option value="237">Zaire</option><option value="238">Zambia</option><option value="239">Zimbabwe</option></select>&nbsp;<span class="inputRequirement">*</span></td>

          </tr>
          <tr>
            <td colspan="2"><img src="images/pixel_trans.gif" border="0" alt="" width="100%" height="10"></td>
          </tr>
          <tr>
            <td colspan="2" class="main"><input type="checkbox" name="primary" value="on" id="primary"> Als Standardadresse gesetzt.</td>
          </tr>
        </table></td>

      </tr>
    </table></td>
  </tr>
</table>
</td>
      </tr>
      <tr>
        <td><img src="images/pixel_trans.gif" border="0" alt="" width="100%" height="10"></td>
      </tr>
      <tr>

        <td><table border="0" width="100%" cellspacing="1" cellpadding="2" class="infoBox">
          <tr class="infoBoxContents">
            <td><table border="0" width="100%" cellspacing="0" cellpadding="2">
              <tr>
                <td width="10"><img src="images/pixel_trans.gif" border="0" alt="" width="10" height="1"></td>
                <td><a href="http://localhost/_osCommerce/address_book.php?osCsid=2c0a7f02262a145707b0575aa58f06a3"><img src="includes/languages/german/images/buttons/button_back.gif" border="0" alt="Zurück" title=" Zurück " width="100" height="22"></a></td>
                <td align="right"><input type="hidden" name="action" value="process"><input type="image" src="includes/languages/german/images/buttons/button_continue.gif" border="0" alt="Weiter" title=" Weiter "></td>
                <td width="10"><img src="images/pixel_trans.gif" border="0" alt="" width="10" height="1"></td>
              </tr>

            </table></td>
          </tr>
        </table></td>
      </tr>

    </table>
</form>

</body>
</html>

 All   Comments   Change History      Sort Order:
Change by Sandro Felicioni [29/Dec/07 06:28 PM]
Field Original Value New Value
Attachment Codesnippet1.html [ 10129 ]

Change by Harald Ponce de Leon [03/Jan/08 06:36 PM]
Fix Version/s 2.2 RC 2 [ 10020 ]
Resolution Fixed [ 1 ]
Assignee Harald Ponce de Leon [ hpdl ]
Status Open [ 1 ] Resolved [ 5 ]

Change by Harald Ponce de Leon [03/Jan/08 06:36 PM]
Status Resolved [ 5 ] Closed [ 6 ]


This site is running on Atlassian JIRA, the Professional Issue Tracker with a free Open Source Project / Non-profit License.
Download and evaluate JIRA for your organisation.
Try Atlassian JIRA™ software for bug tracking and task tracking.
Powered by Atlassian JIRA™ the Professional Issue Tracker. (Enterprise Edition, Version: 3.6.5-#161) - Bug/feature request - Contact Administrators