11-Aug-2010, 01:47 PM
I'm giving you three guesses...
This is the community forum. For a developer response use the Client Area.
11-Aug-2010, 09:27 PM
I have just identified a possible security threat for this code. It is recommended to not yet use it. More info on the threat can be found here: http://seancoates.com/blogs/xss-woes
I'll try to find a fix as soon as possible.
The issue has now been fixed. It is safe to download and use this code, including the source above.
I'll try to find a fix as soon as possible.
The issue has now been fixed. It is safe to download and use this code, including the source above.
I'm giving you three guesses...
17-Aug-2010, 06:45 PM
Found a problem with the add-on. It registers "http://www.example.com/page.php" and "http://example.com/page.php" as two different pages. I'll fix that in the next version.
I'm giving you three guesses...
17-Aug-2010, 07:10 PM
I imagine you have a similar problem with domain.com/ and domain.com/index.php.
17-Aug-2010, 07:16 PM
Yeah, but I think that mine is much easier to fix. I'm almost done already.
For now, if anyone is having trouble with the script, add a redirect(VIA .htaccess) to your site with www in front of it.
Example:as seen on http://www.webweaver.nu/html-tips/web-redirection.shtml
For now, if anyone is having trouble with the script, add a redirect(VIA .htaccess) to your site with www in front of it.
Example:
Code:
Options +FollowSymLinks
RewriteEngine on
RewriteCond %{HTTP_HOST} ^yoursite.com [NC]
RewriteRule ^(.*)$ http://www.yoursite.com/$1 [L,R=301]I'm giving you three guesses...
17-Aug-2010, 09:02 PM
Another solution is replacing $_SERVER['HTTP_HOST'] with "www.yoursite.com" in the add-on, and in the include script. This means that you don't have to use .htaccess for this. I'm working on another solution right now.
I'm giving you three guesses...
13-Jan-2011, 01:23 PM
I post this as new thread , as the original thread is almost FIXED
I wonder, why Commentics is catching the following pages
I found them at ACP ---> Manage --> pages
For example, why gif images are stored as "Pages" !?
Where the errors.php file come from? I have no such page in my web site directory? I think Commentics should reject any non existent URL
I wonder, why Commentics is catching the following pages
I found them at ACP ---> Manage --> pages
Code:
http://falsafa.info/bonheur-c.php?test=1
http://falsafa.info/bonheur-c.php/errors.php
http://falsafa.info/bonheur-c.php/img/pen_pencil.gif
http://falsafa.info/bonheur-c.php/
http://falsafa.info/bonheur-c.php/errors.php?error=lolWhere the errors.php file come from? I have no such page in my web site directory? I think Commentics should reject any non existent URL
13-Jan-2011, 02:07 PM
The above post has been moved here because it's a bug related to this add-on and not Commentics itself.
« Next Oldest | Next Newest »
Possibly Related Threads…
Thread / Author
Replies
Views
Last Post
Users browsing this thread: 1 Guest(s)