Browsing this Thread:   1 Anonymous Users




« 1 (2)


Re: Jobs 4.2 Released Mar. 21 2010
#6
Webmaster
Webmaster


See User information
Go to contact.php around lines 110 and 111 and find these lines:

$desctext = $myts->displayTarea($desctext, 1, 1, 1, 1, 1);
$requirements = $myts->displayTarea($requirements, 1, 1, 1, 1, 1);


Change to this:


if ($xoopsModuleConfig['jobs_form_options'] == 'dhtmltextarea') {
$desctext = $myts->displayTarea($_POST["desctext"],0,0,0,0,0);
} else {
$desctext = $myts->displayTarea($_POST["desctext"], 1,0,1,1,1);
}

if ($xoopsModuleConfig['jobs_form_options'] == 'dhtmltextarea') {
$requirements = $myts->displayTarea($_POST["requirements"],0,0,0,0,0);
} else {
$requirements = $myts->displayTarea($_POST["requirements"], 1,0,1,1,1);
}

The problem is the editor, I had the code set to use html, but the dhtml editor doesn't like that.
I thought I found all the places that mattered but I guess I missed one. Hopefully that's the only one I missed.

Thanks for finding that.
I have fixed the download.

John

Posted on: 2010/3/24 6:43
Twitter Facebook Google Plus Linkedin Del.icio.us Digg Reddit Mr. Wong Top


Re: Jobs 4.2 Released Mar. 21 2010
#5
Just popping in
Just popping in


See User information
Hello John,

When I try to contact for example a person to send him my resume via the contact page on the jobs module, when I submit the form, I get a blank page with this error : "SQL injection found".

Any idea how to fix that please ?

Regards,
Ghaith

edit: I think that we have to find a solution to format the message we put on the text area, if it has some apostrophes etc.. we get this problem.

For exemple, I put this text on the message area : "

Quote:
bonjour,

je souhaite postuler pour ce job, serait-il possible de m'en dire plus?

merci d'avance


with this message I get the blank page with the error "SQL Injection found"

if I change it to this one (without apostrophes)

Quote:
bonjour,

je souhaite postuler pour ce job, serait-il possible de men dire plus?

merci davance


it works fine with the second message. May be some addslashes are necessary ?


Re-regards
Ghaith

Posted on: 2010/3/24 0:15
Twitter Facebook Google Plus Linkedin Del.icio.us Digg Reddit Mr. Wong Top


Re: Jobs 4.2 Released Mar. 21 2010
#4
Just popping in
Just popping in


See User information
you are welcome :)

anyway, if i get some bug, I'll notice it here :)

You don't know if someone is translating the module to french please ?

Regards,
Ghaith

Posted on: 2010/3/23 21:35
Twitter Facebook Google Plus Linkedin Del.icio.us Digg Reddit Mr. Wong Top


Re: Jobs 4.2 Released Mar. 21 2010
#3
Webmaster
Webmaster


See User information
I have just fixed the download. It now includes this fix.

Thanks,

John

Posted on: 2010/3/22 6:37
Twitter Facebook Google Plus Linkedin Del.icio.us Digg Reddit Mr. Wong Top


Re: Jobs 4.2 Released Mar. 21 2010
#2
Just popping in
Just popping in


See User information
Hi,

finally we get a new update, thanks for that ;)

I get some bug when listing the resumes on a specific category, as I said on an another topic, I get all resumes listed even they don't belong to this specific category.

If someone gets the same problem, to fix it :
on the file resumecat.php, line 154:

change:
$sql="select lid, cid, name, title, exp, expire, private, salary, typeprice, date, town, state, valid, view from ".$xoopsDB->prefix("jobs_resume")." where valid='yes' order by $orderby";


to:
$sql="SELECT lid, cid, name, title, exp, expire, private, salary, typeprice, date, town, state, valid, view FROM ".$xoopsDB->prefix("jobs_resume")." WHERE valid='yes' AND cid=".mysql_real_escape_string($cid). " ORDER BY $orderby";


Regards,
Ghaith

Posted on: 2010/3/21 23:14
Twitter Facebook Google Plus Linkedin Del.icio.us Digg Reddit Mr. Wong Top


Jobs 4.2 Released Mar. 21 2010
#1
Webmaster
Webmaster


See User information
I just released version 4.2 of the jobs module.

I can't beleive what a week it has been, first I deleted the module with all the new changes, then I had a cache problem in my computer so some changes were not being applied. I must have missed something, But I can't find it. It takes a long time to test this module.

It is in the download section now.

Report any problems here.

After 1 week I will release it on Xoops.

Thanks,

John

Thanks to GreenFlatDog for some code contributions.


Posted on: 2010/3/21 13:18
Twitter Facebook Google Plus Linkedin Del.icio.us Digg Reddit Mr. Wong Top




« 1 (2)



You can view topic.
You cannot start a new topic.
You cannot reply to posts.
You cannot edit your posts.
You cannot delete your posts.
You cannot add new polls.
You cannot vote in polls.
You cannot attach files to posts.
You cannot post without approval.
You cannot use topic type.
You cannot use HTML syntax.
You cannot use signature.
You cannot create pdf.
You cannot get print page.

[Advanced Search]


Login
Username:

Password:

Remember me



Lost Password?

Register now!
 
Main Menu
 
Who's Online
4 user(s) are online (2 user(s) are browsing Forum)

Members: 0
Guests: 4

more...
 
Donat-O-Meter
Make donations with PayPal!
Stats
Goal: $25.00
Due Date: Oct 31
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $25.00