Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Search with CHAR (CHAR) returns a SQL error


dutch-adl

Recommended Posts

Good day,

 

I searched around (well maybe not as extensively as I should have), but I found no reference for the following:

 

The problem:

In the search text edit field, type in "(admin)", including the parenthesis but not the quotes. Submit the search - all works well (it either finds the products or it does not).

 

Next

 

In the search text edit field, type in "admin (admin)", submit, view the error:

 

1064 - You have an error in your SQL syntax. Check the manual that corresponds to your MySQL server version for the right syntax to use near '( (pd.products_name like '%admin%' or p.products_model like '%a

 

select count(*) as total from products p left join manufacturers m using(manufacturers_id), products_description pd left join specials s on p.products_id = s.products_id, categories c, products_to_categories p2c where p.products_status = '1' and p.products_id = pd.products_id and pd.language_id = '1' and p.products_id = p2c.products_id and p2c.categories_id = c.categories_id and ((pd.products_name like '%admin%' or p.products_model like '%admin%' or m.manufacturers_name like '%admin%') ( (pd.products_name like '%admin%' or p.products_model like '%admin%' or m.manufacturers_name like '%admin%') ) )

 

[TEP STOP]

 

----

 

The reason I believe this is real, is because I tested in the 3 shops I have access to.

 

----

 

If this is a legit bug, please confirm.

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...