Forum management
- Threads started by me
- Threads I participate in

Developer forum

Product search result issue in back end

Afi

Posted on 08/03/2019 08:19:38

Hi,

I notice there is some issue when searching products with double dash characters (--) on their product numbers in back end. Searching it in front end has no issue. Refer to the video below for a clearer explanation.

https://www.useloom.com/share/e8996cd62bb94975b2aa61943fe5abb5

Regards,
Afi

Replies

Nicolai Pedersen

Posted on 08/03/2019 10:21:22

This post has been marked as an answer

Hi Afi

The search in frontend is using lucene and basically strips away the -- when searching.

-- is a SQL escape character and might be the cause.

I'll have someone look into if there is an easy fix.

BR Nicolai

Votes for this answer: 1

Olga Shedko

Posted on 11/03/2019 06:14:43

This post has been marked as an answer

Hello Afi,

I've created new TFS issue #62130 for solving that problem. Will be fixed to the next hot-fix release.

Thank you.

Best regards,

Olga | QA

Votes for this answer: 1

Nicolai Pedersen

Posted on 09/04/2019 11:03:53

Hi Afi

This one has been changed to a new feature that will be released in 9.7 due to the change we will make. There is however a workaround for the problem.

In GlobalSetting.aspx change or insert this node: /Globalsettings/System/http/OverRideSqlInjectionRegEx and set the value to "(;|xp_|3%0)" without the quotes.

BR Nicolai

You must be logged in to post in the forum