Jump to content

ClicShopping

Administrators
  • Posts

    398
  • Joined

  • Last visited

  • Days Won

    107

Posts posted by ClicShopping

  1. Hello

     

    I make an update about the composer who can create automatically an htaccess in shop directory and  when you install application and the site is not accessible.

    I change the json configuration to resolve that.

     

    About chmod if your hoster do not allow to include new file or create new directory. You must do that manually.

     

    For you the most important directory and sub directory are :

     

    Includes/clicshopping/work in 777 and sub

    Sources/images in 777 and image

     

    The chmod can be changed with your ftp

     

    Check also is your hoster accept composer (commande). Now, if you want install a payment for example, composer is required in your server.

     

    If the automatic install do not work you have no choice to download the apps you make an install manually in your case

    You have some tutorials on the website to do that how to install in manual an apps

     

    The best is to have a local website, to install local and after to export in your server.

     

    I hope it can help you to resolve your problem.

    • Like 1
  2. Hello,

     

    Just for information, An update has been made, now, it's possible to :

    update all the library

    update one library

    clear the cache

    compare the version installed with the latest version.

     

    Just a warning, you must be careful when you make an update because it can create an error inside your apps.

    Make for the expert.

    • Like 4
  3. If you hoster  use MyISAM for their SGBD

     

    You can not install ClicShopping because it Use Innodb

    If you see a  message like this when you try to install ClicShopping :

     

    SQLSTATE[42000]: Syntax error or access violation: 1286 Unknown storage engine 'innodb'

     

    You can try to resolve the problem with this process :

    1 - Install manually the Database called  : clicshopping_en_MyIsam.sql located inside install directory via your phpMyAdmin import Db (no data included inside)

    3 - Continue the installation process without to install the Db.

     

  4. Like you can see, the 3.12 is out.
    Some files have been updated or improved. the 3.12 has been out because they have a security fix on jquery. We have updated also some script.

     

    To update ClicShopping :

    If you have modified the template default directory, it's better to use a beyond compare

    If you use another template directory, you nothing to do except to compare you have modified files to see if there is an update or not.

     

    Have a good day :)

    • Thanks 12
  5. An example :

    $CLICSHOPPING_ProductsLength->convert($products_dimension_depth, $products_length_class_id, 2)

    In this case, all the products_dimension_depth will be converted in cm. You can also use the default unit (can be defined in configuration store)

    • Like 1
    • Thanks 5
  6. Hello @Patrick,

    The product length has been introduced because some shipping module takes the length (ups, postcanada, boxtal, fedex ..)
    You can define different length in function your need.

    When you create  a new shipping app, you can convert the length in function of  characteristics of the service. For example, in France, we use the cm but in USA, this is the inch. If you have your length in cm, you can convert automatically in inch .

    Some others updates resolve bug fix.

    • Like 1
    • Thanks 5
  7. @Laela

    Welcome, ClicShopping is not made to be used under Windows,  I have not the time to make all verification inside the environment.

    I think your computer is too slow to execute the process. You can update the execution time and increase the number.

    Go to php.ini, edit and search this line :

     

    ;;;;;;;;;;;;;;;;;;;
    ; Resource Limits ;
    ;;;;;;;;;;;;;;;;;;;
    
    ; Maximum execution time of each script, in seconds
    ; http://php.net/max-execution-time
    ; Note: This directive is hardcoded to 0 for the CLI SAPI
    max_execution_time = 30

    for example, change by this

    max_execution_time = 3000
    • Thanks 1
  8. I looked more deeply on this problem: escapeshellcmd(). If your hoster lock the default Sendmail function, you must use the SMTP inside configuration / Mail

    I will make other test and make an update about as soon as possible. But you can use the application without problem. Just in case in your hoster block this function, use the other.

     

    That's why you hoster create protection on that. https://exploitbox.io/paper/Pwning-PHP-Mail-Function-For-Fun-And-RCE.html

     

    Quote

    The attacker can however inject additional command parameters to the sendmail command itself as the escapeshellcmd() function called by mail() does not quote the $additional_parameters parameter by default. It gives a programmer freedom to pass multiple arguments to sendmail, but may introduce a vulnerability to unaware programmers. A successful injection of additional parameters to sendmail, might trigger additional functionality of the sendmail program itself. For example, if the attacker managed to set $return variable to: attackere@remote -LogFile /tmp/output_file The sendmail program would be called as a shell command: /usr/sbin/sendmail -t -i -f attackere@remote -LogFile /tmp/output_file If the -LogFile was a valid argument for the sendmail interface installed on the target machine, this could cause the program to write out a log file into /tmp/output_file. As it turns out Sendmail MTA has such a logging function in its implementation of /usr/sbin/sendmail interface, which can be enabled by -X parameter and could be used to save malicious code provided by the attacker.

     

  9. @Patrick,

    Thank you for your deep test. You have right, but if a category is on Off, it's supposedly all his other must be on OFF. In this case, there is no problem.

    But you have reason if inside an Off category there is a category on On, in this case, the product is displayed.

     

    About the products attributes, the system must be rewritten in the future, no delay on that. it could be an on next release, now, like always, the focus is to discover the  bugs.

     

    • Like 1
  10.  Hi everybody

     

    You will find inside the zip a folder called update in the root. Open it and include the DB modification. Before to make that, look inside your DB if you have not these fields.

    Else, if you have installed modules use the products table, you must make an update .
    The most impact is inside ClicShopping, I recommend you to make before your update, a copy of your version and make the upgrade. If you have o problem, it's cool, else you can make a comment here.


    About the modules (free and paid)

     

    header_menu :slimmenu, upcomming products
    header_tag : grdp, analytics, facebook pixel, twitter_card,
    apps : antispam, frontpage_specials, favorites, featured, image, manufacturer
    modules_products_info : also_purchased,  products_related,  reviews, download

     

    This is the most of apps and modules impacted by the update.
    Note : the paid modules will be updated today

     

     

    • Like 1
    • Thanks 10
  11. @David

     
    The bug has been identified and updated on the latest version.
    Just download the latest version and update your files. If you have not changed some element inside the template, just push else use a compare files tools like beyond compare.
    (I recommend you to create another template and put inside all the files if you want to modify and all the CSS).  All the files can be overridden .
    Don't forget to update the design configuration.
    In your case, just go in design / header / activate the menu.
    look :https://www.clicshopping.org/forum/topic/62-find-the-good-css-file/

    https://www.clicshopping.org/forum/topic/7-how-to-change-theme/

×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use