Jump to content
coelroy

Product_info SSL issue

Recommended Posts

Hi

There is an SSL issue on the website, which I isolated to the following code in product_info.php

$product_info_query = tep_db_query("select p.products_id, pd.products_name, pd.products_description, p.products_model, p.products_quantity, p.products_image, pd.products_url, p.products_price, p.products_tax_class_id, p.products_date_added, p.products_date_available, p.manufacturers_id, pd.products_tab_1, pd.products_tab_2, pd.products_tab_3, pd.products_tab_4, pd.products_tab_5, p.products_gtin from " . TABLE_PRODUCTS . " p, " . TABLE_PRODUCTS_DESCRIPTION . " pd where p.products_status = '1' and p.products_id = '" . (int)$_GET['products_id'] . "' and pd.products_id = p.products_id and pd.language_id = '" . (int)$languages_id . "'");
   
I have product tabs and the above  insert the data into their respective fields.

It has been defined the same as product_description sql statement.

According to the SSL lock, the "connection is not secure"

Any takers?

Elroy

 

 

 

 

 

 

 

Share this post


Link to post
Share on other sites
9 minutes ago, coelroy said:

According to the SSL lock, the "connection is not secure" 

What is the browser telling you ? if you click the lock it will provide more info on what it's not happy with. I would thiink it's more to do with the data beeing loaded than the db request, you probably have http:// link in your data.


 

Share this post


Link to post
Share on other sites

You would be incline to think that this is caused by images, but it's not the case.

I did a fresh install, sifting through the website's images, gradually adding the modified scripts and once the problem re-appeared, isolated that script and further isolated the code in that script.

That is how I knew.

I have Osc Frozen.

The fresh install worked perfectly, until product tabs were added to that script, then SSL issued the warning.

I must say that this is weird.

Did anybody who have tabs ever encountered this?

I need to point out that this IS NOT an Oscommerce issue, but rather an SSL issue.

 

Share this post


Link to post
Share on other sites

Can we access this website? We will be able to tell you the cause of the problem.

Share this post


Link to post
Share on other sites
39 minutes ago, coelroy said:

The fresh install worked perfectly, until product tabs were added to that script, then SSL issued the warning.

Use you browser to inspect the html produced for the age that is shown as insecure, you will find that an http:// is beeing called on that page. I's not hard to check post or pm your site and I'm sure the issue can be pin pointed. It could just be that a script is beeing loaded from a http or a image.


 

Share this post


Link to post
Share on other sites
Posted (edited)
3 hours ago, coelroy said:

You would be incline to think that this is caused by images, but it's not the case.

 

Your admin is in http not https and you call the image regular_smile.gif from your admin.

Every one can see your admin path in the generated code from your product page (c.....t) ...

Edited by bonbec

Get the latest Responsive osCommerce CE (community edition) here .

(Live   : OsC 2.2, php 5.4 & UTF-8  |  Local : OsC 234BS php7.2 Edge for future shop)

Share this post


Link to post
Share on other sites
5 hours ago, coelroy said:

You would be incline to think that this is caused by images, but it's not the case.

Best not to post in forum or profile if you have problems with site SSL have deleted the comment in profile as it is visable to all, You should chenge your admin dir name and pass word.

As i said it's just some stray http:// in your code that is causing it. Anything using http:// will cause chrome to not show secure, firefox is a bit more forgiving.


 

Share this post


Link to post
Share on other sites
32 minutes ago, JcMagpie said:

Best not to post in forum or profile if you have problems with site SSL have deleted the comment in profile as it is visable to all, You should chenge your admin dir name and pass word.

As i said it's just some stray http:// in your code that is causing it. Anything using http:// will cause chrome to not show secure, firefox is a bit more forgiving.

Oops will do, dunno how that happened?

Share this post


Link to post
Share on other sites
2 hours ago, bonbec said:

image regular_smile.gif from your admin.

Silly me,

Forgot about that.

Will clear out the db entries where the smiley face is.

Thanx

Share this post


Link to post
Share on other sites

Thank you all for your assistance.

SSL is now working again.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×