Silk Road forums
Support => Bug reports => Topic started by: Burning Babylon on July 14, 2013, 12:48 am
-
I'm not sure why I haven't noticed this before but apparently the string "index.php?action=" can't be used in either my Silk Road presentation or on any product listing as it automatically gets converted into "index.php?acti".
The reason I would want to use this string to begin with is I would want to link to my Forum User Account on my Presentation. The Forum Profile would have the URL: http://dkn255hz262ypmii.onion/index.php?action=profile;u=70301
I would assume this could be solved if the text was just treated as text. Either way I'll have to rephrase my Presentation for now until this possibly gets fixed in the future.
-
Hm maybe try it like this:
dkn255hz262ypmii.onion/?action=profile;u=70301
-
Hm maybe try it like this:
dkn255hz262ypmii.onion/?action=profile;u=70301
It seems it didn't work, and that also means I was wrong with the string "index.php?action=". It seems the problem is the string "?action=" and so it apparently had nothing to do with the index.php part. :o
-
having the same problem: http://dkn255hz262ypmii.onion/index.php?topic=189366.0 i tried a couple of methods to get it to go through, none of which worked :S
-
That is occurring as a result of the XSS filter in operation on the main site; there is no way around it, but the security that an XSS filter brings to the site over the minor inconvenience of not being able to link a forum profile URL is unquantifiable.
You can consider linking to your review thread instead, or a post on the forum. They'll be able to view your profile from that.
Libertas
-
I've been able to find another string that changes what's being said, namely the string "Profile" followed either by ( or ). By writing for example "Profile ( X )" it will automatically turn it into "Profile ( X )". If one adds any character before like for example = the problem goes away, so the string "Profile=( X )" is unchanged. I solved this "issue" on my end by replacing ( and ) with [ and ].