Post by jty » Mon Dec 29, 2008 4:40 pm

The emails for contact form & admin > order update are giving the encoded/decoded special characters of $ ' "

If customer writes &, the email comes through as &
& (ampersand)
' (single quote)
" (double quote)
< (less than)
> (greater than)

It's happening on the Contact form and the notes area of Admin Order Update but not in the copy of the Order that is sent to the customer

It also happens in the customer's email address should the customer be so unfortunate to have an email address with a  ' single quote
and in the Subject line

I fixed the comments text by using some sort of html decode thingy.
Haven't looked at the subject line and email addy yet. Have to have dinner first.

Tested on some variant of RC5

Happy New Year

jty
Active Member

Posts

Joined
Sat Aug 30, 2008 8:19 am

Post by hm2k » Wed Dec 31, 2008 7:30 pm

This now has an issue tracker, follow it up there:

http://code.google.com/p/open-cart/issues/detail?id=127

UK Web Hosting


User avatar
Global Moderator

Posts

Joined
Tue Mar 11, 2008 9:06 am
Location - UK
Who is online

Users browsing this forum: No registered users and 8 guests