Re: [WebDNA] Error: Can't open order file. Ignoring [OrderFile] context Error: Error: expected [/APPLICATION], but found [/!] instead[/!]

This WebDNA talk-list message is from

2011


It keeps the original formatting.
numero = 107115
interpreted = N
texte = --Apple-Mail-1-693203210 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=us-ascii Hi Daniel > I noticed in a google search for our error that one of the indexed = urls had &!=3D1 at the end of it, causing the entire page to break.=20 > This also breaks webdna.us when added to the end of URLs.=20 The original issue you asked about (suddenly failing orders) sounds like = something got corrupted.. which I am not addressing here.. but this ^^^ = is a known bug in webdna ... before version 7. If you pass the name of = a webdna context as though it were a URL/form-variable (for example the = comment context, e.g. "page.html?aaa=3Dbbb&!=3Dx", then it sticks in "x" = in place of all the "[!]"'s on your page! ...Thus breaking all the = comment tags... and exposing code you meant to have commented out! = Obviously this is a really dangerous bug. The solution (if you cannot = or should not upgrade to version 7.. and here I am guessing you will not = want to.. on account of your using the old built-in e-commerce tags (?)) = is to use code such as this in your pre-parse script.. (or else in an = include you place at the top of every page) : (you can make the [redirect] redirect to wherever you want.. here it = goes to the default/home page.) [!]--- START: to plug up the security hole of when URL hacker passes a = webdna context name as a formvar---[/!][!] [/!][formvariables name=3D!][redirect /][/formvariables][!] [/!][formvariables name=3Daddfields][redirect /][/formvariables][!] [/!][formvariables name=3Daddlineitem][redirect /][/formvariables][!] [/!][formvariables name=3Dappend][redirect /][/formvariables][!] [/!][formvariables name=3Dappendfile][redirect /][/formvariables][!] [/!][formvariables name=3Dapplescript][redirect /][/formvariables][!] [/!][formvariables name=3Darrayget][redirect /][/formvariables][!] [/!][formvariables name=3Darrayset][redirect /][/formvariables][!] [/!][formvariables name=3Dauthenticate][redirect /][/formvariables][!] [/!][formvariables name=3Dboldwords][redirect /][/formvariables][!] [/!][formvariables name=3Dbrowsername][redirect /][/formvariables][!] [/!][formvariables name=3Dcalcfilecrc32][redirect /][/formvariables][!] [/!][formvariables name=3Dcapitalize][redirect /][/formvariables][!] [/!][formvariables name=3Dcart][redirect /][/formvariables][!] [/!][formvariables name=3Dcase][redirect /][/formvariables][!] [/!][formvariables name=3Dclearlineitems][redirect /][/formvariables][!] [/!][formvariables name=3Dclosedatabase][redirect /][/formvariables][!] [/!][formvariables name=3Dcommand][redirect /][/formvariables][!] [/!][formvariables name=3Dcommitdatabase][redirect /][/formvariables][!] [/!][formvariables name=3Dconvertchars][redirect /][/formvariables][!] [/!][formvariables name=3Dconvertwords][redirect /][/formvariables][!] [/!][formvariables name=3Dcopyfile][redirect /][/formvariables][!] [/!][formvariables name=3Dcopyfolder][redirect /][/formvariables][!] [/!][formvariables name=3Dcountchars][redirect /][/formvariables][!] [/!][formvariables name=3Dcountwords][redirect /][/formvariables][!] [/!][formvariables name=3Dcreatefolder][redirect /][/formvariables][!] [/!][formvariables name=3Ddate][redirect /][/formvariables][!] [/!][formvariables name=3Dddeconnect][redirect /][/formvariables][!] [/!][formvariables name=3Dddesend][redirect /][/formvariables][!] [/!][formvariables name=3Ddecrypt][redirect /][/formvariables][!] [/!][formvariables name=3Ddelete][redirect /][/formvariables][!] [/!][formvariables name=3Ddeletefile][redirect /][/formvariables][!] [/!][formvariables name=3Ddeletefolder][redirect /][/formvariables][!] [/!][formvariables name=3Ddos][redirect /][/formvariables][!] [/!][formvariables name=3Delapsedtime][redirect /][/formvariables][!] [/!][formvariables name=3Delse][redirect /][/formvariables][!] [/!][formvariables name=3Dencrypt][redirect /][/formvariables][!] [/!][formvariables name=3Dexclusivelock][redirect /][/formvariables][!] [/!][formvariables name=3Dfilecompare][redirect /][/formvariables][!] [/!][formvariables name=3Dfileinfo][redirect /][/formvariables][!] [/!][formvariables name=3Dfindstring][redirect /][/formvariables][!] [/!][formvariables name=3Dflushcache][redirect /][/formvariables][!] [/!][formvariables name=3Dflushdatabases][redirect /][/formvariables][!] [/!][formvariables name=3Dformat][redirect /][/formvariables][!] [/!][formvariables name=3Dformat][redirect /][/formvariables][!] [/!][formvariables name=3Dformvariables][redirect /][/formvariables][!] [/!][formvariables name=3Dfounditems][redirect /][/formvariables][!] [/!][formvariables name=3Dfreememory][redirect /][/formvariables][!] [/!][formvariables name=3Dfunction][redirect /][/formvariables][!] [/!][formvariables name=3Dgetchars][redirect /][/formvariables][!] [/!][formvariables name=3Dgetcookie][redirect /][/formvariables][!] [/!][formvariables name=3Dgetmimeheader][redirect /][/formvariables][!] [/!][formvariables name=3Dgrep][redirect /][/formvariables][!] [/!][formvariables name=3Dhideif][redirect /][/formvariables][!] [/!][formvariables name=3Dhtml1][redirect /][/formvariables][!] [/!][formvariables name=3Dhtml2][redirect /][/formvariables][!] [/!][formvariables name=3Dhtml3][redirect /][/formvariables][!] [/!][formvariables name=3Dhttpmethod][redirect /][/formvariables][!] [/!][formvariables name=3Dif][redirect /][/formvariables][!] [/!][formvariables name=3Dinclude][redirect /][/formvariables][!] [/!][formvariables name=3Dinput][redirect /][/formvariables][!] [/!][formvariables name=3Dinterpret][redirect /][/formvariables][!] [/!][formvariables name=3Dipaddress][redirect /][/formvariables][!] [/!][formvariables name=3Dissecureclient][redirect /][/formvariables][!] [/!][formvariables name=3Dlastautonumner][redirect /][/formvariables][!] [/!][formvariables name=3Dlastrandom][redirect /][/formvariables][!] [/!][formvariables name=3Dlineitems][redirect /][/formvariables][!] [/!][formvariables name=3Dlistchars][redirect /][/formvariables][!] [/!][formvariables name=3Dlistcookies][redirect /][/formvariables][!] [/!][formvariables name=3Dlistdatabases][redirect /][/formvariables][!] [/!][formvariables name=3Dlistfields][redirect /][/formvariables][!] [/!][formvariables name=3Dlistfiles][redirect /][/formvariables][!] [/!][formvariables name=3Dlistmimeheaders][redirect = /][/formvariables][!] [/!][formvariables name=3Dlistpath][redirect /][/formvariables][!] [/!][formvariables name=3Dlistvariables][redirect /][/formvariables][!] [/!][formvariables name=3Dlistwords][redirect /][/formvariables][!] [/!][formvariables name=3Dlookup][redirect /][/formvariables][!] [/!][formvariables name=3Dlookup][redirect /][/formvariables][!] [/!][formvariables name=3Dloop][redirect /][/formvariables][!] [/!][formvariables name=3Dlowercase][redirect /][/formvariables][!] [/!][formvariables name=3Dmath][redirect /][/formvariables][!] [/!][formvariables name=3Dmiddle][redirect /][/formvariables][!] [/!][formvariables name=3Dmovefile][redirect /][/formvariables][!] [/!][formvariables name=3Dobject][redirect /][/formvariables][!] [/!][formvariables name=3Dorderfile][redirect /][/formvariables][!] [/!][formvariables name=3Dpassword][redirect /][/formvariables][!] [/!][formvariables name=3Dplatform][redirect /][/formvariables][!] [/!][formvariables name=3Dproduct][redirect /][/formvariables][!] [/!][formvariables name=3Dprotect][redirect /][/formvariables][!] [/!][formvariables name=3Dpurchase][redirect /][/formvariables][!] [/!][formvariables name=3Drandom][redirect /][/formvariables][!] [/!][formvariables name=3Draw][redirect /][/formvariables][!] [/!][formvariables name=3Dredirect][redirect /][/formvariables][!] [/!][formvariables name=3Dreferrer][redirect /][/formvariables][!] [/!][formvariables name=3Dremovehtml][redirect /][/formvariables][!] [/!][formvariables name=3Dremovelineitem][redirect /][/formvariables][!] [/!][formvariables name=3Dreplace][redirect /][/formvariables][!] [/!][formvariables name=3Dreplacefounditems][redirect = /][/formvariables][!] [/!][formvariables name=3Dreturn][redirect /][/formvariables][!] [/!][formvariables name=3Dreturnraw][redirect /][/formvariables][!] [/!][formvariables name=3Dscope][redirect /][/formvariables][!] [/!][formvariables name=3Dsearch][redirect /][/formvariables][!] [/!][formvariables name=3Dsendmail][redirect /][/formvariables][!] [/!][formvariables name=3Dsetcookie][redirect /][/formvariables][!] [/!][formvariables name=3Dsetheader][redirect /][/formvariables][!] [/!][formvariables name=3Dsetlineitem][redirect /][/formvariables][!] [/!][formvariables name=3Dsetmimeheader][redirect /][/formvariables][!] [/!][formvariables name=3Dshell][redirect /][/formvariables][!] [/!][formvariables name=3Dshowif][redirect /][/formvariables][!] [/!][formvariables name=3Dshownext][redirect /][/formvariables][!] [/!][formvariables name=3Dspawn][redirect /][/formvariables][!] [/!][formvariables name=3Dsql][redirect /][/formvariables][!] [/!][formvariables name=3Dsql][redirect /][/formvariables][!] [/!][formvariables name=3Dsqlconnect][redirect /][/formvariables][!] [/!][formvariables name=3Dsqldisconnect][redirect /][/formvariables][!] [/!][formvariables name=3Dsqlexecute][redirect /][/formvariables][!] [/!][formvariables name=3Dsqlinfo][redirect /][/formvariables][!] [/!][formvariables name=3Dsqlrelease][redirect /][/formvariables][!] [/!][formvariables name=3Dsqlresult][redirect /][/formvariables][!] [/!][formvariables name=3Dswitch][redirect /][/formvariables][!] [/!][formvariables name=3Dtable][redirect /][/formvariables][!] [/!][formvariables name=3Dtcpconnect][redirect /][/formvariables][!] [/!][formvariables name=3Dtcpsend][redirect /][/formvariables][!] [/!][formvariables name=3Dtext][redirect /][/formvariables][!] [/!][formvariables name=3Dthen][redirect /][/formvariables][!] [/!][formvariables name=3Dthisurl][redirect /][/formvariables][!] [/!][formvariables name=3Dtime][redirect /][/formvariables][!] [/!][formvariables name=3Dunurl][redirect /][/formvariables][!] [/!][formvariables name=3Duppercase][redirect /][/formvariables][!] [/!][formvariables name=3Durl][redirect /][/formvariables][!] [/!][formvariables name=3Dusername][redirect /][/formvariables][!] [/!][formvariables name=3Dvalidcard][redirect /][/formvariables][!] [/!][formvariables name=3Dversion][redirect /][/formvariables][!] [/!][formvariables name=3Dversion][redirect /][/formvariables][!] [/!][formvariables name=3Dwaitforfile][redirect /][/formvariables][!] [/!][formvariables name=3Dwritefile][redirect /][/formvariables][!] [/!][formvariables name=3Dxmlnode][redirect /][/formvariables][!] [/!][formvariables name=3Dxmlnodes][redirect /][/formvariables][!] [/!][formvariables name=3Dxmlnodesattributes][redirect = /][/formvariables][!] [/!][formvariables name=3Dxmlparse][redirect /][/formvariables][!] [/!][formvariables name=3Dxsl][redirect /][/formvariables][!] [/!][formvariables name=3Dxslt][redirect /][/formvariables][!] [/!][!]--- END: to plug up the security hole of when URL hacker passes a = webdna context name as a formvar---[/!] --Apple-Mail-1-693203210 Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=us-ascii Hi = Daniel

I noticed in a google = search for our error that one of the indexed urls had &!=3D1 at = the end of it, causing the entire page to break. 
This also breaks webdna.us when = added to the end of URLs. 

The = original issue you asked about (suddenly failing orders) sounds like = something got corrupted.. which I am not addressing here.. but this ^^^ = is a known bug in webdna ... before version 7.  If you pass the = name of a webdna context as though it were a URL/form-variable (for = example the comment context, e.g. "page.html?aaa=3Dbbb&!=3Dx", then = it sticks in "x" in place of all the "[!]"'s on your page!  ...Thus = breaking all the comment tags...  and exposing code you meant to = have commented out!  Obviously this is a really dangerous bug. =  The solution (if you cannot or should not upgrade to version 7.. = and here I am guessing you will not want to.. on account of your using = the old built-in e-commerce tags (?))  is to use code such as this = in your pre-parse script.. (or else in an include you place at the top = of every page) :
(you can make the [redirect] redirect to = wherever you want..  here it goes to the default/home = page.)


[!]--- START: to = plug up the security hole of when URL hacker passes a webdna context = name as a formvar---[/!][!]
[/!][formvariables = name=3D!][redirect /][/formvariables][!]
[/!][formvariables = name=3Daddfields][redirect = /][/formvariables][!]
[/!][formvariables = name=3Daddlineitem][redirect = /][/formvariables][!]
[/!][formvariables name=3Dappend][redirect= /][/formvariables][!]
[/!][formvariables = name=3Dappendfile][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dapplescript][redirect = /][/formvariables][!]
[/!][formvariables = name=3Darrayget][redirect = /][/formvariables][!]
[/!][formvariables = name=3Darrayset][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dauthenticate][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dboldwords][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dbrowsername][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dcalcfilecrc32][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dcapitalize][redirect = /][/formvariables][!]
[/!][formvariables name=3Dcart][redirect = /][/formvariables][!]
[/!][formvariables name=3Dcase][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dclearlineitems][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dclosedatabase][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dcommand][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dcommitdatabase][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dconvertchars][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dconvertwords][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dcopyfile][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dcopyfolder][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dcountchars][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dcountwords][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dcreatefolder][redirect = /][/formvariables][!]
[/!][formvariables name=3Ddate][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dddeconnect][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dddesend][redirect = /][/formvariables][!]
[/!][formvariables = name=3Ddecrypt][redirect = /][/formvariables][!]
[/!][formvariables name=3Ddelete][redirect= /][/formvariables][!]
[/!][formvariables = name=3Ddeletefile][redirect = /][/formvariables][!]
[/!][formvariables = name=3Ddeletefolder][redirect = /][/formvariables][!]
[/!][formvariables name=3Ddos][redirect = /][/formvariables][!]
[/!][formvariables = name=3Delapsedtime][redirect = /][/formvariables][!]
[/!][formvariables name=3Delse][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dencrypt][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dexclusivelock][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dfilecompare][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dfileinfo][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dfindstring][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dflushcache][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dflushdatabases][redirect = /][/formvariables][!]
[/!][formvariables name=3Dformat][redirect= /][/formvariables][!]
[/!][formvariables = name=3Dformat][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dformvariables][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dfounditems][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dfreememory][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dfunction][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dgetchars][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dgetcookie][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dgetmimeheader][redirect = /][/formvariables][!]
[/!][formvariables name=3Dgrep][redirect = /][/formvariables][!]
[/!][formvariables name=3Dhideif][redirect= /][/formvariables][!]
[/!][formvariables name=3Dhtml1][redirect= /][/formvariables][!]
[/!][formvariables name=3Dhtml2][redirect= /][/formvariables][!]
[/!][formvariables name=3Dhtml3][redirect= /][/formvariables][!]
[/!][formvariables = name=3Dhttpmethod][redirect = /][/formvariables][!]
[/!][formvariables name=3Dif][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dinclude][redirect = /][/formvariables][!]
[/!][formvariables name=3Dinput][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dinterpret][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dipaddress][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dissecureclient][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlastautonumner][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlastrandom][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlineitems][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlistchars][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlistcookies][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlistdatabases][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlistfields][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlistfiles][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlistmimeheaders][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlistpath][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlistvariables][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlistwords][redirect = /][/formvariables][!]
[/!][formvariables name=3Dlookup][redirect= /][/formvariables][!]
[/!][formvariables = name=3Dlookup][redirect = /][/formvariables][!]
[/!][formvariables name=3Dloop][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlowercase][redirect = /][/formvariables][!]
[/!][formvariables name=3Dmath][redirect = /][/formvariables][!]
[/!][formvariables name=3Dmiddle][redirect= /][/formvariables][!]
[/!][formvariables = name=3Dmovefile][redirect = /][/formvariables][!]
[/!][formvariables name=3Dobject][redirect= /][/formvariables][!]
[/!][formvariables = name=3Dorderfile][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dpassword][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dplatform][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dproduct][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dprotect][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dpurchase][redirect = /][/formvariables][!]
[/!][formvariables name=3Drandom][redirect= /][/formvariables][!]
[/!][formvariables name=3Draw][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dredirect][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dreferrer][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dremovehtml][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dremovelineitem][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dreplace][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dreplacefounditems][redirect = /][/formvariables][!]
[/!][formvariables name=3Dreturn][redirect= /][/formvariables][!]
[/!][formvariables = name=3Dreturnraw][redirect = /][/formvariables][!]
[/!][formvariables name=3Dscope][redirect = /][/formvariables][!]
[/!][formvariables name=3Dsearch][redirect= /][/formvariables][!]
[/!][formvariables = name=3Dsendmail][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dsetcookie][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dsetheader][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dsetlineitem][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dsetmimeheader][redirect = /][/formvariables][!]
[/!][formvariables name=3Dshell][redirect = /][/formvariables][!]
[/!][formvariables name=3Dshowif][redirect= /][/formvariables][!]
[/!][formvariables = name=3Dshownext][redirect = /][/formvariables][!]
[/!][formvariables name=3Dspawn][redirect = /][/formvariables][!]
[/!][formvariables name=3Dsql][redirect = /][/formvariables][!]
[/!][formvariables name=3Dsql][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dsqlconnect][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dsqldisconnect][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dsqlexecute][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dsqlinfo][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dsqlrelease][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dsqlresult][redirect = /][/formvariables][!]
[/!][formvariables name=3Dswitch][redirect= /][/formvariables][!]
[/!][formvariables name=3Dtable][redirect= /][/formvariables][!]
[/!][formvariables = name=3Dtcpconnect][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dtcpsend][redirect = /][/formvariables][!]
[/!][formvariables name=3Dtext][redirect = /][/formvariables][!]
[/!][formvariables name=3Dthen][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dthisurl][redirect = /][/formvariables][!]
[/!][formvariables name=3Dtime][redirect = /][/formvariables][!]
[/!][formvariables name=3Dunurl][redirect = /][/formvariables][!]
[/!][formvariables = name=3Duppercase][redirect = /][/formvariables][!]
[/!][formvariables name=3Durl][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dusername][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dvalidcard][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dversion][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dversion][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dwaitforfile][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dwritefile][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dxmlnode][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dxmlnodes][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dxmlnodesattributes][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dxmlparse][redirect = /][/formvariables][!]
[/!][formvariables name=3Dxsl][redirect = /][/formvariables][!]
[/!][formvariables name=3Dxslt][redirect = /][/formvariables][!]
[/!][!]--- END: to plug up the security = hole of when URL hacker passes a webdna context name as a = formvar---[/!]

= --Apple-Mail-1-693203210-- Associated Messages, from the most recent to the oldest:

    
  1. Re: [WebDNA] Error: Can't open order file. Ignoring [OrderFile] context Error: Error: expected [/APPLICATION], but found [/!] instead[/!] (Kenneth Grome 2011)
  2. Re: [WebDNA] Error: Can't open order file. Ignoring [OrderFile] context Error: Error: expected [/APPLICATION], but found [/!] instead[/!] (Govinda 2011)
  3. Re: [WebDNA] Error: Can't open order file. Ignoring [OrderFile] context Error: Error: expected [/APPLICATION], but found [/!] instead[/!] (Kenneth Grome 2011)
  4. Re: [WebDNA] Error: Can't open order file. Ignoring [OrderFile] context Error: Error: expected [/APPLICATION], but found [/!] instead[/!] (Govinda 2011)
  5. Re: [WebDNA] Error: Can't open order file. Ignoring [OrderFile] context Error: Error: expected [/APPLICATION], but found [/!] instead[/!] (Kenneth Grome 2011)
  6. Re: [WebDNA] Error: Can't open order file. Ignoring [OrderFile] context Error: Error: expected [/APPLICATION], but found [/!] instead[/!] (Govinda 2011)
  7. Re: [WebDNA] Error: Can't open order file. Ignoring [OrderFile] context Error: Error: expected [/APPLICATION], but found [/!] instead[/!] (Govinda 2011)
  8. Re: [WebDNA] Error: Can't open order file. Ignoring [OrderFile] context Error: Error: expected [/APPLICATION], but found [/!] instead[/!] (Kenneth Grome 2011)
  9. Re: [WebDNA] Error: Can't open order file. Ignoring [OrderFile] context Error: Error: expected [/APPLICATION], but found [/!] instead[/!] (Govinda 2011)
  10. Re: [WebDNA] Error: Can't open order file. Ignoring [OrderFile] context Error: Error: expected [/APPLICATION], but found [/!] instead[/!] (Kenneth Grome 2011)
  11. Re: [WebDNA] Error: Can't open order file. Ignoring [OrderFile] context Error: Error: expected [/APPLICATION], but found [/!] instead[/!] (Kenneth Grome 2011)
  12. Re: [WebDNA] Error: Can't open order file. Ignoring [OrderFile] context Error: Error: expected [/APPLICATION], but found [/!] instead[/!] (Kenneth Grome 2011)
--Apple-Mail-1-693203210 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=us-ascii Hi Daniel > I noticed in a google search for our error that one of the indexed = urls had &!=3D1 at the end of it, causing the entire page to break.=20 > This also breaks webdna.us when added to the end of URLs.=20 The original issue you asked about (suddenly failing orders) sounds like = something got corrupted.. which I am not addressing here.. but this ^^^ = is a known bug in webdna ... before version 7. If you pass the name of = a webdna context as though it were a URL/form-variable (for example the = comment context, e.g. "page.html?aaa=3Dbbb&!=3Dx", then it sticks in "x" = in place of all the "[!]"'s on your page! ...Thus breaking all the = comment tags... and exposing code you meant to have commented out! = Obviously this is a really dangerous bug. The solution (if you cannot = or should not upgrade to version 7.. and here I am guessing you will not = want to.. on account of your using the old built-in e-commerce tags (?)) = is to use code such as this in your pre-parse script.. (or else in an = include you place at the top of every page) : (you can make the [redirect] redirect to wherever you want.. here it = goes to the default/home page.) [!]--- START: to plug up the security hole of when URL hacker passes a = webdna context name as a formvar---[/!][!] [/!][formvariables name=3D!][redirect /][/formvariables][!] [/!][formvariables name=3Daddfields][redirect /][/formvariables][!] [/!][formvariables name=3Daddlineitem][redirect /][/formvariables][!] [/!][formvariables name=3Dappend][redirect /][/formvariables][!] [/!][formvariables name=3Dappendfile][redirect /][/formvariables][!] [/!][formvariables name=3Dapplescript][redirect /][/formvariables][!] [/!][formvariables name=3Darrayget][redirect /][/formvariables][!] [/!][formvariables name=3Darrayset][redirect /][/formvariables][!] [/!][formvariables name=3Dauthenticate][redirect /][/formvariables][!] [/!][formvariables name=3Dboldwords][redirect /][/formvariables][!] [/!][formvariables name=3Dbrowsername][redirect /][/formvariables][!] [/!][formvariables name=3Dcalcfilecrc32][redirect /][/formvariables][!] [/!][formvariables name=3Dcapitalize][redirect /][/formvariables][!] [/!][formvariables name=3Dcart][redirect /][/formvariables][!] [/!][formvariables name=3Dcase][redirect /][/formvariables][!] [/!][formvariables name=3Dclearlineitems][redirect /][/formvariables][!] [/!][formvariables name=3Dclosedatabase][redirect /][/formvariables][!] [/!][formvariables name=3Dcommand][redirect /][/formvariables][!] [/!][formvariables name=3Dcommitdatabase][redirect /][/formvariables][!] [/!][formvariables name=3Dconvertchars][redirect /][/formvariables][!] [/!][formvariables name=3Dconvertwords][redirect /][/formvariables][!] [/!][formvariables name=3Dcopyfile][redirect /][/formvariables][!] [/!][formvariables name=3Dcopyfolder][redirect /][/formvariables][!] [/!][formvariables name=3Dcountchars][redirect /][/formvariables][!] [/!][formvariables name=3Dcountwords][redirect /][/formvariables][!] [/!][formvariables name=3Dcreatefolder][redirect /][/formvariables][!] [/!][formvariables name=3Ddate][redirect /][/formvariables][!] [/!][formvariables name=3Dddeconnect][redirect /][/formvariables][!] [/!][formvariables name=3Dddesend][redirect /][/formvariables][!] [/!][formvariables name=3Ddecrypt][redirect /][/formvariables][!] [/!][formvariables name=3Ddelete][redirect /][/formvariables][!] [/!][formvariables name=3Ddeletefile][redirect /][/formvariables][!] [/!][formvariables name=3Ddeletefolder][redirect /][/formvariables][!] [/!][formvariables name=3Ddos][redirect /][/formvariables][!] [/!][formvariables name=3Delapsedtime][redirect /][/formvariables][!] [/!][formvariables name=3Delse][redirect /][/formvariables][!] [/!][formvariables name=3Dencrypt][redirect /][/formvariables][!] [/!][formvariables name=3Dexclusivelock][redirect /][/formvariables][!] [/!][formvariables name=3Dfilecompare][redirect /][/formvariables][!] [/!][formvariables name=3Dfileinfo][redirect /][/formvariables][!] [/!][formvariables name=3Dfindstring][redirect /][/formvariables][!] [/!][formvariables name=3Dflushcache][redirect /][/formvariables][!] [/!][formvariables name=3Dflushdatabases][redirect /][/formvariables][!] [/!][formvariables name=3Dformat][redirect /][/formvariables][!] [/!][formvariables name=3Dformat][redirect /][/formvariables][!] [/!][formvariables name=3Dformvariables][redirect /][/formvariables][!] [/!][formvariables name=3Dfounditems][redirect /][/formvariables][!] [/!][formvariables name=3Dfreememory][redirect /][/formvariables][!] [/!][formvariables name=3Dfunction][redirect /][/formvariables][!] [/!][formvariables name=3Dgetchars][redirect /][/formvariables][!] [/!][formvariables name=3Dgetcookie][redirect /][/formvariables][!] [/!][formvariables name=3Dgetmimeheader][redirect /][/formvariables][!] [/!][formvariables name=3Dgrep][redirect /][/formvariables][!] [/!][formvariables name=3Dhideif][redirect /][/formvariables][!] [/!][formvariables name=3Dhtml1][redirect /][/formvariables][!] [/!][formvariables name=3Dhtml2][redirect /][/formvariables][!] [/!][formvariables name=3Dhtml3][redirect /][/formvariables][!] [/!][formvariables name=3Dhttpmethod][redirect /][/formvariables][!] [/!][formvariables name=3Dif][redirect /][/formvariables][!] [/!][formvariables name=3Dinclude][redirect /][/formvariables][!] [/!][formvariables name=3Dinput][redirect /][/formvariables][!] [/!][formvariables name=3Dinterpret][redirect /][/formvariables][!] [/!][formvariables name=3Dipaddress][redirect /][/formvariables][!] [/!][formvariables name=3Dissecureclient][redirect /][/formvariables][!] [/!][formvariables name=3Dlastautonumner][redirect /][/formvariables][!] [/!][formvariables name=3Dlastrandom][redirect /][/formvariables][!] [/!][formvariables name=3Dlineitems][redirect /][/formvariables][!] [/!][formvariables name=3Dlistchars][redirect /][/formvariables][!] [/!][formvariables name=3Dlistcookies][redirect /][/formvariables][!] [/!][formvariables name=3Dlistdatabases][redirect /][/formvariables][!] [/!][formvariables name=3Dlistfields][redirect /][/formvariables][!] [/!][formvariables name=3Dlistfiles][redirect /][/formvariables][!] [/!][formvariables name=3Dlistmimeheaders][redirect = /][/formvariables][!] [/!][formvariables name=3Dlistpath][redirect /][/formvariables][!] [/!][formvariables name=3Dlistvariables][redirect /][/formvariables][!] [/!][formvariables name=3Dlistwords][redirect /][/formvariables][!] [/!][formvariables name=3Dlookup][redirect /][/formvariables][!] [/!][formvariables name=3Dlookup][redirect /][/formvariables][!] [/!][formvariables name=3Dloop][redirect /][/formvariables][!] [/!][formvariables name=3Dlowercase][redirect /][/formvariables][!] [/!][formvariables name=3Dmath][redirect /][/formvariables][!] [/!][formvariables name=3Dmiddle][redirect /][/formvariables][!] [/!][formvariables name=3Dmovefile][redirect /][/formvariables][!] [/!][formvariables name=3Dobject][redirect /][/formvariables][!] [/!][formvariables name=3Dorderfile][redirect /][/formvariables][!] [/!][formvariables name=3Dpassword][redirect /][/formvariables][!] [/!][formvariables name=3Dplatform][redirect /][/formvariables][!] [/!][formvariables name=3Dproduct][redirect /][/formvariables][!] [/!][formvariables name=3Dprotect][redirect /][/formvariables][!] [/!][formvariables name=3Dpurchase][redirect /][/formvariables][!] [/!][formvariables name=3Drandom][redirect /][/formvariables][!] [/!][formvariables name=3Draw][redirect /][/formvariables][!] [/!][formvariables name=3Dredirect][redirect /][/formvariables][!] [/!][formvariables name=3Dreferrer][redirect /][/formvariables][!] [/!][formvariables name=3Dremovehtml][redirect /][/formvariables][!] [/!][formvariables name=3Dremovelineitem][redirect /][/formvariables][!] [/!][formvariables name=3Dreplace][redirect /][/formvariables][!] [/!][formvariables name=3Dreplacefounditems][redirect = /][/formvariables][!] [/!][formvariables name=3Dreturn][redirect /][/formvariables][!] [/!][formvariables name=3Dreturnraw][redirect /][/formvariables][!] [/!][formvariables name=3Dscope][redirect /][/formvariables][!] [/!][formvariables name=3Dsearch][redirect /][/formvariables][!] [/!][formvariables name=3Dsendmail][redirect /][/formvariables][!] [/!][formvariables name=3Dsetcookie][redirect /][/formvariables][!] [/!][formvariables name=3Dsetheader][redirect /][/formvariables][!] [/!][formvariables name=3Dsetlineitem][redirect /][/formvariables][!] [/!][formvariables name=3Dsetmimeheader][redirect /][/formvariables][!] [/!][formvariables name=3Dshell][redirect /][/formvariables][!] [/!][formvariables name=3Dshowif][redirect /][/formvariables][!] [/!][formvariables name=3Dshownext][redirect /][/formvariables][!] [/!][formvariables name=3Dspawn][redirect /][/formvariables][!] [/!][formvariables name=3Dsql][redirect /][/formvariables][!] [/!][formvariables name=3Dsql][redirect /][/formvariables][!] [/!][formvariables name=3Dsqlconnect][redirect /][/formvariables][!] [/!][formvariables name=3Dsqldisconnect][redirect /][/formvariables][!] [/!][formvariables name=3Dsqlexecute][redirect /][/formvariables][!] [/!][formvariables name=3Dsqlinfo][redirect /][/formvariables][!] [/!][formvariables name=3Dsqlrelease][redirect /][/formvariables][!] [/!][formvariables name=3Dsqlresult][redirect /][/formvariables][!] [/!][formvariables name=3Dswitch][redirect /][/formvariables][!] [/!][formvariables name=3Dtable][redirect /][/formvariables][!] [/!][formvariables name=3Dtcpconnect][redirect /][/formvariables][!] [/!][formvariables name=3Dtcpsend][redirect /][/formvariables][!] [/!][formvariables name=3Dtext][redirect /][/formvariables][!] [/!][formvariables name=3Dthen][redirect /][/formvariables][!] [/!][formvariables name=3Dthisurl][redirect /][/formvariables][!] [/!][formvariables name=3Dtime][redirect /][/formvariables][!] [/!][formvariables name=3Dunurl][redirect /][/formvariables][!] [/!][formvariables name=3Duppercase][redirect /][/formvariables][!] [/!][formvariables name=3Durl][redirect /][/formvariables][!] [/!][formvariables name=3Dusername][redirect /][/formvariables][!] [/!][formvariables name=3Dvalidcard][redirect /][/formvariables][!] [/!][formvariables name=3Dversion][redirect /][/formvariables][!] [/!][formvariables name=3Dversion][redirect /][/formvariables][!] [/!][formvariables name=3Dwaitforfile][redirect /][/formvariables][!] [/!][formvariables name=3Dwritefile][redirect /][/formvariables][!] [/!][formvariables name=3Dxmlnode][redirect /][/formvariables][!] [/!][formvariables name=3Dxmlnodes][redirect /][/formvariables][!] [/!][formvariables name=3Dxmlnodesattributes][redirect = /][/formvariables][!] [/!][formvariables name=3Dxmlparse][redirect /][/formvariables][!] [/!][formvariables name=3Dxsl][redirect /][/formvariables][!] [/!][formvariables name=3Dxslt][redirect /][/formvariables][!] [/!][!]--- END: to plug up the security hole of when URL hacker passes a = webdna context name as a formvar---[/!] --Apple-Mail-1-693203210 Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=us-ascii Hi = Daniel

I noticed in a google = search for our error that one of the indexed urls had &!=3D1 at = the end of it, causing the entire page to break. 
This also breaks webdna.us when = added to the end of URLs. 

The = original issue you asked about (suddenly failing orders) sounds like = something got corrupted.. which I am not addressing here.. but this ^^^ = is a known bug in webdna ... before version 7.  If you pass the = name of a webdna context as though it were a URL/form-variable (for = example the comment context, e.g. "page.html?aaa=3Dbbb&!=3Dx", then = it sticks in "x" in place of all the "[!]"'s on your page!  ...Thus = breaking all the comment tags...  and exposing code you meant to = have commented out!  Obviously this is a really dangerous bug. =  The solution (if you cannot or should not upgrade to version 7.. = and here I am guessing you will not want to.. on account of your using = the old built-in e-commerce tags (?))  is to use code such as this = in your pre-parse script.. (or else in an include you place at the top = of every page) :
(you can make the [redirect] redirect to = wherever you want..  here it goes to the default/home = page.)


[!]--- START: to = plug up the security hole of when URL hacker passes a webdna context = name as a formvar---[/!][!]
[/!][formvariables = name=3D!][redirect /][/formvariables][!]
[/!][formvariables = name=3Daddfields][redirect = /][/formvariables][!]
[/!][formvariables = name=3Daddlineitem][redirect = /][/formvariables][!]
[/!][formvariables name=3Dappend][redirect= /][/formvariables][!]
[/!][formvariables = name=3Dappendfile][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dapplescript][redirect = /][/formvariables][!]
[/!][formvariables = name=3Darrayget][redirect = /][/formvariables][!]
[/!][formvariables = name=3Darrayset][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dauthenticate][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dboldwords][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dbrowsername][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dcalcfilecrc32][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dcapitalize][redirect = /][/formvariables][!]
[/!][formvariables name=3Dcart][redirect = /][/formvariables][!]
[/!][formvariables name=3Dcase][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dclearlineitems][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dclosedatabase][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dcommand][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dcommitdatabase][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dconvertchars][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dconvertwords][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dcopyfile][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dcopyfolder][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dcountchars][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dcountwords][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dcreatefolder][redirect = /][/formvariables][!]
[/!][formvariables name=3Ddate][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dddeconnect][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dddesend][redirect = /][/formvariables][!]
[/!][formvariables = name=3Ddecrypt][redirect = /][/formvariables][!]
[/!][formvariables name=3Ddelete][redirect= /][/formvariables][!]
[/!][formvariables = name=3Ddeletefile][redirect = /][/formvariables][!]
[/!][formvariables = name=3Ddeletefolder][redirect = /][/formvariables][!]
[/!][formvariables name=3Ddos][redirect = /][/formvariables][!]
[/!][formvariables = name=3Delapsedtime][redirect = /][/formvariables][!]
[/!][formvariables name=3Delse][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dencrypt][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dexclusivelock][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dfilecompare][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dfileinfo][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dfindstring][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dflushcache][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dflushdatabases][redirect = /][/formvariables][!]
[/!][formvariables name=3Dformat][redirect= /][/formvariables][!]
[/!][formvariables = name=3Dformat][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dformvariables][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dfounditems][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dfreememory][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dfunction][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dgetchars][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dgetcookie][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dgetmimeheader][redirect = /][/formvariables][!]
[/!][formvariables name=3Dgrep][redirect = /][/formvariables][!]
[/!][formvariables name=3Dhideif][redirect= /][/formvariables][!]
[/!][formvariables name=3Dhtml1][redirect= /][/formvariables][!]
[/!][formvariables name=3Dhtml2][redirect= /][/formvariables][!]
[/!][formvariables name=3Dhtml3][redirect= /][/formvariables][!]
[/!][formvariables = name=3Dhttpmethod][redirect = /][/formvariables][!]
[/!][formvariables name=3Dif][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dinclude][redirect = /][/formvariables][!]
[/!][formvariables name=3Dinput][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dinterpret][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dipaddress][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dissecureclient][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlastautonumner][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlastrandom][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlineitems][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlistchars][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlistcookies][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlistdatabases][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlistfields][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlistfiles][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlistmimeheaders][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlistpath][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlistvariables][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlistwords][redirect = /][/formvariables][!]
[/!][formvariables name=3Dlookup][redirect= /][/formvariables][!]
[/!][formvariables = name=3Dlookup][redirect = /][/formvariables][!]
[/!][formvariables name=3Dloop][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dlowercase][redirect = /][/formvariables][!]
[/!][formvariables name=3Dmath][redirect = /][/formvariables][!]
[/!][formvariables name=3Dmiddle][redirect= /][/formvariables][!]
[/!][formvariables = name=3Dmovefile][redirect = /][/formvariables][!]
[/!][formvariables name=3Dobject][redirect= /][/formvariables][!]
[/!][formvariables = name=3Dorderfile][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dpassword][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dplatform][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dproduct][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dprotect][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dpurchase][redirect = /][/formvariables][!]
[/!][formvariables name=3Drandom][redirect= /][/formvariables][!]
[/!][formvariables name=3Draw][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dredirect][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dreferrer][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dremovehtml][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dremovelineitem][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dreplace][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dreplacefounditems][redirect = /][/formvariables][!]
[/!][formvariables name=3Dreturn][redirect= /][/formvariables][!]
[/!][formvariables = name=3Dreturnraw][redirect = /][/formvariables][!]
[/!][formvariables name=3Dscope][redirect = /][/formvariables][!]
[/!][formvariables name=3Dsearch][redirect= /][/formvariables][!]
[/!][formvariables = name=3Dsendmail][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dsetcookie][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dsetheader][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dsetlineitem][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dsetmimeheader][redirect = /][/formvariables][!]
[/!][formvariables name=3Dshell][redirect = /][/formvariables][!]
[/!][formvariables name=3Dshowif][redirect= /][/formvariables][!]
[/!][formvariables = name=3Dshownext][redirect = /][/formvariables][!]
[/!][formvariables name=3Dspawn][redirect = /][/formvariables][!]
[/!][formvariables name=3Dsql][redirect = /][/formvariables][!]
[/!][formvariables name=3Dsql][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dsqlconnect][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dsqldisconnect][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dsqlexecute][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dsqlinfo][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dsqlrelease][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dsqlresult][redirect = /][/formvariables][!]
[/!][formvariables name=3Dswitch][redirect= /][/formvariables][!]
[/!][formvariables name=3Dtable][redirect= /][/formvariables][!]
[/!][formvariables = name=3Dtcpconnect][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dtcpsend][redirect = /][/formvariables][!]
[/!][formvariables name=3Dtext][redirect = /][/formvariables][!]
[/!][formvariables name=3Dthen][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dthisurl][redirect = /][/formvariables][!]
[/!][formvariables name=3Dtime][redirect = /][/formvariables][!]
[/!][formvariables name=3Dunurl][redirect = /][/formvariables][!]
[/!][formvariables = name=3Duppercase][redirect = /][/formvariables][!]
[/!][formvariables name=3Durl][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dusername][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dvalidcard][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dversion][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dversion][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dwaitforfile][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dwritefile][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dxmlnode][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dxmlnodes][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dxmlnodesattributes][redirect = /][/formvariables][!]
[/!][formvariables = name=3Dxmlparse][redirect = /][/formvariables][!]
[/!][formvariables name=3Dxsl][redirect = /][/formvariables][!]
[/!][formvariables name=3Dxslt][redirect = /][/formvariables][!]
[/!][!]--- END: to plug up the security = hole of when URL hacker passes a webdna context name as a = formvar---[/!]

= --Apple-Mail-1-693203210-- Govinda

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Thanks Grant (1997) WebCat2b13MacPlugIn - [showif][search][/showif] (1997) HTML Mail & Line breaks... (2004) [WebDNA] OT - does anyone know how to get Fetch/BBedit to leave my last line-ending char intact? (2009) Multiple Pulldowns (1997) Sorting error (1997) [time] math Q (2003) [OT] What is your favorite Javascript forum? (2006) TeaRoom Order fields email account remain empty even thoughthewy are filled. (1997) Quit revisited (1997) Getting URL's entered manually (1997) WebCat2final1 crashes (1997) Credit Card Number checking (1997) Webcat vs Tango (2000) emailer (1997) Add - optional parameters textA=.... (1997) Order not created error (1997) FREE Web Server Monitor FREE (1997) AddLineitems - 100 Item Limit? (2002) Sorting search results (1998)