Post by leprimo » Fri Nov 13, 2009 6:50 pm

with following link
http://demo.opencart.com/catalog/view/t ... t/cart.tpl
you can read/download source code from this .tpl-file :o
Extend the .htaccess with

Code: Select all

<Files *.tpl>
  order allow,deny
  deny from all
</Files>
will prevent this.

Active Member

Posts

Joined
Wed Nov 04, 2009 8:31 pm

Post by thanaa » Sat Nov 14, 2009 10:49 am

While accurate this isn't an Opencart issue. Its a server issue, and that issue doesn't exist across all servers. I also cant think of a time it would cause any security issues, unless you are using the MVC model incorrectly and putting things like passwords and stuff in your view.

New member

Posts

Joined
Tue May 05, 2009 2:12 am

Post by digitalchaos » Sat Nov 14, 2009 1:17 pm

Thanks!

The most terrifying words in the English language are: I'm from the government and I'm here to help.
Ronald Reagan

Digital Chaos | Graphic Design Studio http://www.digitalchaos.biz
Digital Chaos Prints | Custom Art Prints http://www.digitalchaosprints.biz


User avatar
New member

Posts

Joined
Mon Sep 28, 2009 9:22 pm
Location - Paterson NJ

Post by leprimo » Sun Nov 15, 2009 6:56 pm

thanaa wrote:While accurate this isn't an Opencart issue....
I did not say...

Active Member

Posts

Joined
Wed Nov 04, 2009 8:31 pm

Post by moggiex » Sun Nov 15, 2009 8:54 pm

leprimo wrote:
thanaa wrote:While accurate this isn't an Opencart issue....
I did not say...
But I think its good enough to be added to the base OpenCart site, as if the owner is enabling the .htaccess it only takes 2 seconds for one for the devs to add:

Code: Select all

<Files *.tpl>
  order allow,deny
  deny from all
</Files>
To the base code, so it does this by default, rather than luck of seeing this post and adding it manually

Matt

Code: Select all

It was like that when I found it, honest!


User avatar
Active Member

Posts

Joined
Mon Nov 09, 2009 9:55 pm
Who is online

Users browsing this forum: No registered users and 6 guests