Permissions problem with ProductForm.php

in Cartweaver PHP • 1 year ago

Hi there

The 'add a product' page for my wife's shop has starting playing up. She put all the product info into a spreadsheet, and when we copy & paste the contents over, and hit submit after entering general info, descriptions and photos, it gives an error:

Forbidden You do not have permission to access this document.

I tried adding tinymce, and using 'paste as plain text', same thing. I also pasted into notepad first and then copied the plain text manually, again with similar results.

Only when I type everything in longhand does it actually work.

Any ideas what's causing this?

Thanks

Austen.

Replies(5)

oli.cartw.. Team Cartweaver

Re: Permissions problem with ProductForm.php

1 year ago

Hi Austen,

based on your description, I can think of 3 possible causes for such behavior:

a) File permissions > Make sure all your files have read permissions
b) Check the submitted content length
c) Check the submitted content for strange characters.

Oli
Cartweaver Support Team

austenozzy

Re: Permissions problem with ProductForm.php

1 year ago

Hi Oli

Thanks for this. Before I posted, I went through all of the files in the admin section on the remote server and chmod'd them all to 777, directory by directory.

I pasted the info from the csv into notepad++, checking for dodgy characters, even replacing all the full stops and line breaks.

I logged into phpmyadmin and manually edited a test item with all of the fields, and it was fine. Edit those same fields in productform.php, and it throws the 403. Whilst in there, I checked that the descriptions fields were ok for length - they were fine.

Here's a sample of one of the lines:

--------

creamerrosebud45g
Rosebud Creamer
Rose scented bath creamer
Rose scented bath creamer topped with a real rosebud. Drop your creamer into a warm bath and watch as it starts to fizz gently softening the water and releasing the moisturising butters. Please remember to rinse the bath thoroughly after use to avoid any possible staining.
1.50
45

--------

Seems crazy. Any other ideas?

Austen

austenozzy

Re: Permissions problem with ProductForm.php

1 year ago

I think it's line breaks. What can I do to make sure line breaks are ok when inserting the long and short descriptions?

Any tricks I can try? :-)

Austen.

austenozzy

Re: Permissions problem with ProductForm.php

1 year ago

Oli,

From the logs, if it helps:

86.136.xx.yy - - [12/Jul/2010:18:39:45 +0100] "POST /cw3/admin/ProductForm.php? HTTP/1.1" 403 1255 "http://www.xxxyyyzzz.co.uk/cw3/admin/ProductForm.php" "Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0; SU 3.14; SLCC1; .NET CLR 2.0.50727; Media Center PC 5.0; InfoPath.2; .NET CLR 1.1.4322; .NET CLR 3.5.30729; .NET CLR 3.0.30729; OfficeLivePatch.1.3; OfficeLiveConnector.1.5; MS-RTC LM 8)"

austenozzy

Re: Permissions problem with ProductForm.php

1 year ago

Hi again

For anyone interested, the problem was with the host. It was stopping it from working as it was deemed a sql injection attempt. Email from support:

#####

The error in question is:

which means you're being blocked by the mod_security system.

If you add

SecFilterRemove 300013

to a .htaccess file, it will stop that rule from triggering on your site/directory. However, if you do continue to get issues, you can switch off mod_security with the following line:

SecFilterEngine Off

###########

Hope this helps anyone facing the same problems as me.

Austen.

Top Reply

Response title

Attachments

New to this Portal?