I downloaded the 7.7.3 Advanced Updater earlier today. The last page of the Cart checkout page was giving a 500 Server error. Unfortunately I was unaware of the issue until a customer notified me about it this evening. I immediately downloaded the 7.6.4 Stability Release Updater, applied that to my site, and it seems to have fixed the issue. I will run additional tests throughout the next 24 hours just to be sure however.

I am not sure if this was just an isolated incident, but I wanted to post the issue here nonetheless.

I'm on PHP and noticed a similar problem when installing the latest 7.7.3 updater.

On the final checkout page the credit card info is missing and just showed "Error" in its place.

The 7.7.3 update just prior to the latest one works fine.

The latest changed files in question are:

ajaxservice.php
inccart.php and
incfunctions.php

Patrick

Could you have a look in the logs and see what the details of the error message is? Or has one of you got a test site we can try this on? I've tried here and everything seems to be fine.

Vince

Click Here for Shopping Cart Software
Click Here to sign up for our newsletter
Click Here for the latest updater

So I uploaded the files again and it works fine.

Question:

I ran a test order using my personal credentials and all went through as expected. (with latest files)

I ran another test order through but this time I changed my email address to (sample@email.tst)

This time the order did NOT go through as expected. I didn't receive any kind of message on the screen other than the formatting for the cart page looked like some of the css was missing. (no big deal)

Then I ran another order through using my correct credentials (using my correct email address) and this time it did the same as the sample@email.tst order.

So my question is this:

If someone or some BOT tries to place an order using a flagged email address that is included in the inc/cart page and fails to place an order then goes back and uses a different email address, is the physical address and/or name and/or IP address logged to prevent anymore orders?

What I had to do is delete the updated files, upload the prior files and run a test order with correct credentials to allow my order to go through. Then I uploaded the latest files again.

Below is the error log of the attempted order using sample@email.tst

This is also the same error when I tried ordering with my correct credentials after using the sample@email.tst

AH01071: Got error 'PHP message: PHP Fatal error: Uncaught TypeError: property_exists(): Argument #1 ($object_or_class) must be of type object|string, null given in /var/www/vhosts/########.com/httpdocs/OnlineStore/vsadmin/inc/inccart.php:7045\nStack trace:\n#0 /var/www/vhosts/#######.com/httpdocs/OnlineStore/vsadmin/inc/inccart.php(7045): property_exists()\n#1 /var/www/vhosts/########.com/httpdocs/OnlineStore/cart.php(444): include('...')\n#2 {main}\n thrown in /var/www/vhosts/#######.com/httpdocs/OnlineStore/vsadmin/inc/inccart.php on line 7045', referer: https://www.########.com/OnlineStore/cart.php

Patrick
ECT 7.7.3
PHP 8.2.13

I wasn't able to navigate back that far in my logs...sry