Re: Hide Cart ID in URL?
This WebDNA talk-list message is from 2003
It keeps the original formatting.
numero = 49690
interpreted = N
texte = On 4/22/03 4:56 PM, Chris Stegner @ Work
wrote:> First question, is it possible to hide the cart id? I know what it is and> why it's there so my initial guess would be no, but as I said, I'm not into> it like most of you.While you at it, and with whomever you work with, you may want to have themlook at how the store is coded. For example, just a couple of links into thestore and I saw:http://www.officescapesdirect.com/results.tmpl$search?db=catalog.txt&eqSubcategorydata=Palms&Boolean=T&cart=326002680233593&asSKUsort=1&max=5Changing the URL tohttp://www.officescapesdirect.com/catalog.txtWhich I gathered from the first url, returned me your entire Store databasefile! I could also change various things such as max returns. The concern isof course what other sensitive data is somehow accessible.I am pretty sure that wasn't your intention when you had Exodus program yoursite! ;-)HTHAlexAlex J McCombie New World MediaChief Information Officer Drawer 607888/892.6379 Fair Haven, NY 13064Alex@NewWorldMedia.com http://OurClients.comInterface Designer WebDNA Programmer Database Designer-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/
Associated Messages, from the most recent to the oldest:
On 4/22/03 4:56 PM, Chris Stegner @ Work wrote:> First question, is it possible to hide the cart id? I know what it is and> why it's there so my initial guess would be no, but as I said, I'm not into> it like most of you.While you at it, and with whomever you work with, you may want to have themlook at how the store is coded. For example, just a couple of links into thestore and I saw:http://www.officescapesdirect.com/results.tmpl$search?db=catalog.txt&eqSubcategorydata=Palms&Boolean=T&cart=326002680233593&asSKUsort=1&max=5Changing the URL tohttp://www.officescapesdirect.com/catalog.txtWhich I gathered from the first url, returned me your entire Store databasefile! I could also change various things such as max returns. The concern isof course what other sensitive data is somehow accessible.I am pretty sure that wasn't your intention when you had Exodus program yoursite! ;-)HTHAlexAlex J McCombie New World MediaChief Information Officer Drawer 607888/892.6379 Fair Haven, NY 13064Alex@NewWorldMedia.com http://OurClients.comInterface Designer WebDNA Programmer Database Designer-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/
Alex McCombie
DOWNLOAD WEBDNA NOW!
Top Articles:
Talk List
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...
Related Readings:
database files in secure folder (1997)
Can this be done? (1997)
SQL Error: 00000 (2004)
Location of Webcat site in folder hierarchy (1997)
RE: Displaying Location (1997)
form crasehes server (1997)
displaying New products (using [date]) (1997)
Password Question (2003)
[WebDNA] Upgrade from OS 10.7.5 WebDNA 6.2 to Mavericks (2013)
Databases inside [SHOWIF] (1998)
WebDNA tags in WebMerchant email templates ... (1997)
A question about security (1998)
Rounding question (2002)
Format all of a sudden doesn't work (1997)
webcat- multiple selection in input field (1997)
Digest Version (2000)
Wanted: More Math Functions (or, Can You Solve This?) (1997)
Summing a field full of numbers ... (1997)
Calculating days, hours, minutes ago (2004)
2.0 Info (1997)