Mort-lemur Posted May 9, 2010 Share Posted May 9, 2010 Hi, The post on define mainpage got me thinking about this.... I use the contribution "Option Types V2" on my site, which allows customers to enter certain data when ordering a product, this data is obviously stored in the database and is passed through to the order, invoice etc. I have installed all the security add-ons and carried out all the security tweeks mentioned in the forums, but I dont think any of them would prevent code being added through a customer inputted option. Please correct me if I am wrong on this, but if I am right, how can I protect / sanitise the input? Here is the link to the contribution HERE Thanks Now running on a fully modded, Mobile Friendly 2.3.4 Store with the Excellent MTS installed - See my profile for the mods installed ..... So much thanks for all the help given along the way by forum members. Link to comment Share on other sites More sharing options...
aweldon3 Posted June 23, 2010 Share Posted June 23, 2010 Did you ever get your issue answered or figured out? It sounds like we're having the same problem: http://freshfashionz.com/catalog/product_info.php?products_id=938 Link to comment Share on other sites More sharing options...
Mort-lemur Posted June 24, 2010 Author Share Posted June 24, 2010 Did you ever get your issue answered or figured out? It sounds like we're having the same problem: http://freshfashionz.com/catalog/product_info.php?products_id=938 Hi, No, I didn't get any replies. Thanks Now running on a fully modded, Mobile Friendly 2.3.4 Store with the Excellent MTS installed - See my profile for the mods installed ..... So much thanks for all the help given along the way by forum members. Link to comment Share on other sites More sharing options...
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.