Follow us on Twitter X-Cart on Facebook Wiki
Shopping cart software Solutions for online shops and malls

Smart Search from alteredCart :: Spell Checking, Did You Mean? and More.

 
Reply
   X-Cart forums > X-Cart 4 > Third Party Add-Ons for X-Cart 4
 
Thread Tools
  #141  
Old 04-08-2009, 04:54 AM
  wjbrewer's Avatar 
wjbrewer wjbrewer is offline
Banned
 

X-Adept
  
Join Date: Feb 2005
Location: Pittsburgh, PA
Posts: 504
 

Default Re: Smart Search from alteredCart :: Spell Checking, Did You Mean? and More.

Quote:
Originally Posted by Manic
I have Smart Search installed. I just noticed when searching for a word with the letters "char" (such as "charles" or "character"), it displays a message "invalid search" on a white background and my entire store disappears?

This was added when the were a lot of attacks using CHAR keyword attempting to hack X-Cart. X-Cart versions 4.x and higher are not vulnerable to this attach.

To change this open _search.php and find this about line 100:

PHP Code:
// Kill search when certain characters are used //
        
foreach (array(";","@","http","script",".php",".txt",".html",".htm","exec","char") as $kill)    
            if (
stristr($searchstring$kill))
                die(
'Invalid Search'); 

You can remove the entire block of code, or just the "exec" and "char" at the end.

This code is no longer in the Smart Search for version 2.0 and on.
Reply With Quote

The following user thanks wjbrewer for this useful post:
Manic (04-08-2009)
  #142  
Old 04-08-2009, 05:28 AM
 
maildodge maildodge is offline
 

Senior Member
  
Join Date: Feb 2005
Posts: 109
 

Default Re: Smart Search from alteredCart :: Spell Checking, Did You Mean? and More.

How can we get the latest version of smart search?

Thanks.
__________________
http://www.stand-out.net

X-Cart 4.0.16
Reply With Quote
  #143  
Old 04-24-2009, 06:33 AM
  wardworth's Avatar 
wardworth wardworth is offline
 

Advanced Member
  
Join Date: Sep 2007
Posts: 78
 

Default Re: Smart Search from alteredCart :: Spell Checking, Did You Mean? and More.

If I upgrade Smart Search from 1.3.4 to 1.3.10 which files do I actually need to update? I only ask as some of my smart search files have been fixed by Bill over the last few years and I don't want those alterations to be affected and break my store. The main reason for upgrading is to enable boolean by default (which is in the new config file) as we seem to be getting some very sporadic results when searching by manufacturer and model number when boolean isn't used. Is manufacturer not a searchable field?
__________________
:: Wardworth Ltd
:: X-Cart 4.1.8
Reply With Quote
  #144  
Old 06-19-2009, 05:39 AM
 
cycloneuk cycloneuk is offline
 

Advanced Member
  
Join Date: Apr 2008
Posts: 54
 

Default Re: Smart Search from alteredCart :: Spell Checking, Did You Mean? and More.

Anyone using Smart Search on 4.1.12? The _search.php file just displays a blank page. It was working fine on 4.1.11
__________________
X-Cart Gold 4.1.12
Reply With Quote
  #145  
Old 06-23-2009, 05:25 PM
 
rhu rhu is offline
 

Advanced Member
  
Join Date: Dec 2007
Posts: 63
 

Default Re: Smart Search from alteredCart :: Spell Checking, Did You Mean? and More.

I have Smart Search and it works great, but McAfee Secure says that hackers can inject SQL thru the search... Can somebody from alteredCart help me out and resolve this issue? McAfee has it as a "level 3" vulnerability and it won't show the McAfee Secure seal on my site because of it...
__________________
X-Cart 4.3.0 Gold
Reply With Quote
  #146  
Old 07-16-2009, 08:14 PM
 
ahumanz ahumanz is offline
 

Newbie
  
Join Date: May 2008
Posts: 5
 

Default Re: Smart Search from alteredCart :: Spell Checking, Did You Mean? and More.

hi wjbrewer,

does the smart search now support advanced filter mod?

is there a place where i can test out the search for >1000 products, with before using and after using the smart search?

last thing, i tried the demo, using a keyword javascript (was looking for the javascript book) and it returned "invalid search".
__________________
Eng Yeow
www.orangeaday.com.sg
on Xcart 4.2.0

Last edited by qualiteam : 10-12-2015 at 03:47 AM.
Reply With Quote
  #147  
Old 07-16-2009, 11:40 PM
 
retrtrtrytrutru retrtrtrytrutru is offline
 

Senior Member
  
Join Date: Aug 2007
Posts: 101
 

Default Re: Smart Search from alteredCart :: Spell Checking, Did You Mean? and More.

Quick question, could't find the answer myself. Can I also use Smart Search to block users from searching in !PRODUCTCODE for example? I have an Excel database to fill our store with and the !PRODUCTCODE column is for internal use only, it contains codes that I don't want our customers to see/search in. Thanks in advance.
__________________
www.qualitylamps.eu
X-Cart Gold 4.1.8, PHP 5.2.6, MySQL 5.0.51a, Apache 2.2.9

www.vervangjelamp.nl
X-Cart Gold 4.2.0, PHP 5.2.6, MySQL 5.0.37-standard, Apache/2

Sorry for the weird user name, I registered it by mistake
Reply With Quote
  #148  
Old 08-05-2009, 05:07 AM
  MattAustin's Avatar 
MattAustin MattAustin is offline
 

Advanced Member
  
Join Date: Jul 2008
Posts: 41
 

Default Re: Smart Search from alteredCart :: Spell Checking, Did You Mean? and More.

Could anyone who is using Smart Search V2 upwards please let me know their sites URL as on our site it crashes IE6 and I would like to know if anyone is experiencing something similar
__________________
xcart version 4.1.6 Gold
Linux 2.6.9-67.0.20.ELsmp
www.qvsdirect.com
Reply With Quote
  #149  
Old 08-08-2009, 08:05 PM
 
canuck canuck is offline
 

Advanced Member
  
Join Date: Oct 2007
Location: Ontario, Canada
Posts: 65
 

Default Re: Smart Search from alteredCart :: Spell Checking, Did You Mean? and More.

Quote:
Originally Posted by rhu
I have Smart Search and it works great, but McAfee Secure says that hackers can inject SQL thru the search... Can somebody from alteredCart help me out and resolve this issue? McAfee has it as a "level 3" vulnerability and it won't show the McAfee Secure seal on my site because of it...

Is this still currently an issue? Or was it resolved?
__________________
X-Cart Gold 4.1.10
AARtech Canada
Reply With Quote
  #150  
Old 08-11-2009, 11:06 AM
 
JazzyJeff JazzyJeff is offline
 

Senior Member
  
Join Date: Aug 2006
Location: Houston, TX
Posts: 188
 

Default Re: Smart Search from alteredCart :: Spell Checking, Did You Mean? and More.

Quote:
Originally Posted by MattAustin
Could anyone who is using Smart Search V2 upwards please let me know their sites URL as on our site it crashes IE6 and I would like to know if anyone is experiencing something similar

We are also getting sporadic reports of Smart Search crashing Internet Explorer; don't think it is limited to IE6; apparently doesn't occur with other browser platforms.
__________________
X-Cart Gold ver. 4.1.9

CDSEO Pro, X-AOM, Firetank's Feed Manager and Sitemap,
Altered Cart's Smart Search and 1-Page Checkout, On Sale,
and Marketing Manager Pro

Hosting by WiredTree
Reply With Quote
Reply
   X-Cart forums > X-Cart 4 > Third Party Add-Ons for X-Cart 4


Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT -8. The time now is 03:27 AM.

   

 
X-Cart forums © 2001-2020