3 replies [Last post]
Darren_J
Darren_J's picture
Offline
newbie
Last seen: 6 years 35 weeks ago
Timezone: GMT+10.5
Joined: 2013-03-05
Posts: 2
Points: 3

Hey guys,

Im styling a new website at the moment but have run into a problem that i dont know how to solve.

For some reason the {p} tags are being displayed on the front end in product description?

Here is an example of what i mean:

http://dlsdev.com/index.php?dispatch=products.view&product_id=67

Ive also noticed that my search field is messed up too, not sure what went wrong! Puzzled

Any help would be greatly appreciated

regards
Darren

gary.turner
gary.turner's picture
Offline
Moderator
Dallas
Last seen: 15 hours 14 min ago
Dallas
Timezone: GMT-6
Joined: 2004-06-25
Posts: 9743
Points: 3822

p tags escaped

In the source, at about lines 267-274, is this:

<div class="product-details">
</div>
 
&lt;p&gt;
	High quality fluorocarbon leader&lt;/p&gt;
 
 
</div>
Notice the < and > characters are escaped. How it happens, I leave to you to discover. Scripting?

cheers,

gary

If your web page is as clever as you can make it, it's probably too clever for you to debug or maintain.

Darren_J
Darren_J's picture
Offline
newbie
Last seen: 6 years 35 weeks ago
Timezone: GMT+10.5
Joined: 2013-03-05
Posts: 2
Points: 3

gary.turner wrote: In the

gary.turner wrote:

In the source, at about lines 267-274, is this:

<div class="product-details">
</div>
 
&lt;p&gt;
	High quality fluorocarbon leader&lt;/p&gt;
 
 
</div>
Notice the < and > characters are escaped. How it happens, I leave to you to discover. Scripting?

cheers,

gary

Hi Gary,

not being a real expert in this area can you spell it out for me please Smile

gary.turner
gary.turner's picture
Offline
Moderator
Dallas
Last seen: 15 hours 14 min ago
Dallas
Timezone: GMT-6
Joined: 2004-06-25
Posts: 9743
Points: 3822

Not sure I can

I find this at lines 548-549 at this look-see; I may have been viewing a subset of the source previously.

I am guessing that the product details are stored in the database with the html markup. If that's the case, security precautions would require the '<' and '>' be escaped when served. You will need to go over this section of the php source and the database entries. These are things that you should take up with the mid-tier (php) and back-end (database) developers. Also check with the db entry clerk.

cheers,

gary

If your web page is as clever as you can make it, it's probably too clever for you to debug or maintain.