without_a_clue Posted September 18, 2011 Posted September 18, 2011 I've just re installed a monster OS commerce configuration on my server to showcase within my main site portfolio. I'd previously branded this template for a client but now wish to showcase the original. The only difference is that this time I'm configuring the site using a MySQL v5. Once installed I received the standard 2 error messages (remove INSTALL directory and change permissions on CONFIGURE.PHP) Having done all that the site seems to be all there, with the addition of a huge text paragraph that reads: 1054 - Unknown column 'p.products_id' in 'on clause' select p.products_image, pd.products_name, p.products_id, p.manufacturers_id, p.products_price, p.products_tax_class_id, IF(s.status, s.specials_new_products_price, NULL) as specials_new_products_price, IF(s.status, s.specials_new_products_price, p.products_price) as final_price from products_description pd, products p left join manufacturers m on p.manufacturers_id = m.manufacturers_id, products_to_categories p2c left join specials s on p.products_id = s.products_id where p.products_status = '1' and p.products_id = p2c.products_id and pd.products_id = p2c.products_id and pd.language_id = '1' and p2c.categories_id = '72' order by p.products_date_added DESC limit 1 [TEP STOP] you can view this message at : http://www.digitalcargo.co.uk/osLibrary/index.php any suggestions?
germ Posted September 18, 2011 Posted September 18, 2011 Visit the link below: How to Secure Your Site Pay close attention to "SECURING THE ADMIN" - Yours is vulnerable. It's easier to do a few security fixes now than to clean up a hacked store later. And if you don't secure the admin your shop will be hacked. It's just a question of when... If I suggest you edit any file(s) make a backup first - I'm not perfect and neither are you. "Given enough impetus a parallelogramatically shaped projectile can egress a circular orifice." - Me - "Headers already sent" - The definitive help "Cannot redeclare ..." - How to find/fix it SSL Implementation Help Like this post? "Like" it again over there >
without_a_clue Posted September 18, 2011 Author Posted September 18, 2011 As previously stated this is just a DEMO SITE, and i will tidy up that back end function with a secured directory, but what about the problem i'm discussing ??
Jan Zonjee Posted September 18, 2011 Posted September 18, 2011 The code in the template is not fit for MySQL5. In the osC updates this was taken care off (already a long time). For an idea about the needed changes see for example this topic.
without_a_clue Posted September 18, 2011 Author Posted September 18, 2011 now that is the correct answer !! :P
germ Posted September 18, 2011 Posted September 18, 2011 As previously stated this is just a DEMO SITE, and i will tidy up that back end function with a secured directory, but what about the problem i'm discussing ?? You've got a gaping hole in site security. If one part gets compromised the whole thing goes to hell in a handbasket. The clock is ticking. Act before the hackers do, If I suggest you edit any file(s) make a backup first - I'm not perfect and neither are you. "Given enough impetus a parallelogramatically shaped projectile can egress a circular orifice." - Me - "Headers already sent" - The definitive help "Cannot redeclare ..." - How to find/fix it SSL Implementation Help Like this post? "Like" it again over there >
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.