| 15367 | Command Line | major | N/A | 18-11-09 20:06 | 18-11-09 20:06 | marxarelli | normal | new | none | none | 2.10.10 | open | 0 | Command-line access control is insecure |
In index.php, the USER environment variable is checked against the global $commandline_users to determine the process owner's access to invocation of PHPList scripts from the command line. This method is insecure as environment variables are easily spoofed. If you really want to implement this type of access control, you can check for the process user with posix_getpwuid(posix_getuid()). However, these functions are only available through the POSIX extension which is not always loaded. This access control seems unnecessary anyway, as POSIX permissions and ACLs are sufficient. |
$ USER=notme php -r 'print_r($_SERVER["USER"]."\n");' notme |
||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15366 | Template Management | feature | always | 16-11-09 20:16 | 16-11-09 20:16 | adrian15 | normal | new | none | none | 2.10.10 | open | 0 | Add basic template ownership |
This patch adds template ownership to phplist. It means that each admin can create their own templates and one admin cannot see another admin's template. I copy and paste in "Additional information" field the basic instructions on how to use it. I am very interested in this patch becoming part of the official phplist. So I am ready to correct it as many times as it is needed so that it fits the way that you want things to be coded or if it needs to be improved somehow or whatever. I think I have done a great job because I have also coded the database upgrade part but it's up to you to judge my work so that we can improve it a lot better and add it to official phplist upstream code. Thank you very much for your attention. adrian15 |
Patch instructions This patch applies for phplist 2.10.10. Here there are some generic instructions to apply it: Instrucciones In any pc: Save .diff file on phplist_patrones folder. Save/Download phplist-2.10.10.tgz (Available at phplist.com webpage) Inside phplist_patrones folder we make desde_cero folder. mkdir desde_cero We enter inside it and untar cd desde_cero tar xvzf ../phplist-2.10.10.tgz Let's apply the patch patch -p1 < ../phplist_basic_template_ownership_support.diff We rename the folder : mv phplist-2.10.10 phplist-2.10.11 We create another tgz file: tar cvzf phplist-2.10.11.tgz phplist-2.10.11 Now we are going to be able to work with phplist-2.10.11.tgz file. Now we go to the machine where we want to install or upgrade our new improved with template ownership support phplist. Optional: With phpmyadmin or a similar tool we can make a database backup in order to recreate it if something fails. Let's rename the folder /var/www/lists/ (where we can see admin,config,dl.php,... folders/files))and we rename it to lists_old (Do not remove it yet!). mv /var/www/lists /var/www/lists_old Let's untar phplist-2.10.11.tgz (Let's suppose that we have saved a copy in the /tmp folder) cd /tmp tar xvzf phplist-2.10.11.tgz cp -r phplist-2.10.11/public_html/lists /var/www Now we are going to recover our old config file: cd /var/www/lists/config cp ../../lists_old/config/config.php config.php We visit: http://url/lists/admin/ [^] We login as a super admin (usually admin). As we are requested we click "upgrade" link. And we click on "here" link. We should see: Information: Success If we already had patterns we should assign them an admin in order to use them. We can use phpmyadmin for this task. We will check admin table first. In the admin table we can identify each one of the admin ids (We will use this data later). We go to template table. In each one of its rows we will edit the column adminid and we will set it to the id value that we had already seen in the admin table so that each template gets associated an admin. Note: As you might think if you have too many data you can try to speed things with an appropiated SQL sentence. Optional: Now it is safe to delete /var/www/lists_old/ but, as always, the best way of doing things is saving a copy of this folder, just in case. And, of course, remove it from /var/www folder so that the folder cannot be accessed from outside the server. And that's all. |
phplist_basic_template_ownership_support.diff (11 KB) 16-11-09 20:16 | |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15365 | Documentation - Configuration | text | always | 12-11-09 13:02 | 12-11-09 13:02 | Thorsten Albrecht | normal | new | none | none | 2.10.10 | open | 0 | Wrong description of MAILQUEUE_BATCH_PERIOD in config file |
The description of MAILQUEUE_BATCH_PERIOD is wrong. It says: "MAILQUEUE_BATCH_PERIOD define the length of one batch processing period, in seconds (3600 is an hour)" This is not true. Instead, it defines the waiting time between two batches. E.g., I am using the following settings: define("MAILQUEUE_BATCH_SIZE",10); define("MAILQUEUE_BATCH_PERIOD",1); What happens is that I am sending 10 mails per batch and the web interface waits for 1 second before reloading and sending the next 100 mails. Thorsten |
batch-phpList_arrows.gif (40 KB) 12-11-09 13:02 | ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15364 | Click Tracking | minor | always | 11-11-09 19:19 | 11-11-09 19:19 | scheidell | normal | new | none | none | 2.10.10 | open | 0 | minor issue with click tracking and anti-phishing software |
many versions of anti-phishing , either plugins, or built into mail clients, or via anti-spam systems will see non-matching url's when the a href (the local, trackable url, the domain) doesn't match the one that you are actually directed to. I would not having the 'visible' url be the same as the real url. Without something, it makes phplist emails with click tracing on seem like spam or phishing emails. worse yet, would be if the target url (original one) was https. (reason I know alot about this, is we produce anti-spam products that include anti-phishing functions) |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15363 | HTML Email Support | minor | always | 11-11-09 19:11 | 12-11-09 10:47 | neffets | normal | new | 2.2.10 | none | none | Suse SLES10 | Linux x64 | 2.2.10 | open | 0 | addAbsoluteResources does not / or fails in matching schema |
function: addAbsoluteResources (lib.php line 533) the preg_match cannot match because "[x|y|z]" is used instead of "(x|y|z)" AND after this it matched (a failure) on links to if "http" are in the link anywhere. Imagine link: a href="/.bin/fwd.fcgi?http://www.b2b-deutschland.de/wirtschaftsnews/091110/duerftige-aussichten-fuer-arcandor-glaeubiger/index.php" [^] It matched, but should not. Result the url was not absolutized. Attended result for website=www.b2b-deutschland.de should be: a href="http://www.b2b-deutschland.de/.bin/fwd.fcgi?http://www.b2b-deutschland.de/wirtschaftsnews/091110/duerftige-aussichten-fuer-arcandor-glaeubiger/index.php" [^] Patch: |
Take a link with relative path for own link tracking and give it a parameter with a fully qualified uri. e.g. a href="http://www.b2b-deutschland.de/.bin/fwd.fcgi?http://www.b2b-deutschland.de/wirtschaftsnews/091110/duerftige-aussichten-fuer-arcandor-glaeubiger/index.php" [^] |
Patch lib.php 533c533 < if (preg_match("#[http|javascript|https|ftp|mailto]:#i",$match)) { --- > if (preg_match("#^(http|javascript|https|ftp|mailto):#i",$match)) { |
patch_sts1.diff (1 KB) 11-11-09 19:11 |
| ||||||||||||||||||||||||||||||||||||||||||||||
| 15362 | Internationalization (l18n) | major | always | 10-11-09 11:51 | 10-11-09 11:51 | EdgarWahn | normal | new | none | none | 2.10.10 | open | 0 | overall handling of charsets |
You can enter bits of text at several locations, ranging from config file (plain text email user name) to configuration (database). At no point (it seems) the charset of user input is been checked or converted to UTF-8. You might end up with a mixture of Charsets, depending on the browser settings of the PHPList users. Additionally PHPList does not send an content-type HTTP header containing charset information, which will produce bad output depending on the users browser settings. You really should send something like "content-type: text/plain; charset=utf-8". |
* check & convert every single bit of input by utilizing mb_detect_encoding or equivalent * generate content-type HTTP header containing a fixed charset (utf-8 preferred) * adapt the i18n language files (as they contain an charset header as well, they need to be converted to utf-8 (which could be done automatically as you know the sites charset and the translations charset => iconv)) |
||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15361 | Subscribe Process | minor | always | 08-11-09 12:13 | 08-11-09 12:13 | Subhash | normal | new | none | none | 2.10.10 | open | 0 | Attribut value is not saved |
Havingh set an own table prefix the value of an attribute of the type select is not saved on subscription. The bug ist in "admin/commonlib/lib/userlib.php" from line 913 on. WRONG: $curval = Sql_Fetch_Row_Query(sprintf('select id from phplist_listattr_%s where name = "%s"',$atttable,$data["displayvalue"]),1); if (!$curval[0] && $data['displayvalue'] && $data['displayvalue'] != '') { Sql_Query(sprintf('insert into phplist_listattr_%s (name) values("%s")',$atttable, $data["displayvalue"])); RIGHT: $curval = Sql_Fetch_Row_Query(sprintf('select id from ' . $usertable_prefix . 'listattr_%s where name = "%s"',$atttable,$data["displayvalue"]),1); if (!$curval[0] && $data['displayvalue'] && $data['displayvalue'] != '') { Sql_Query(sprintf('insert into ' . $usertable_prefix . 'listattr_%s (name) values("%s")',$atttable, $data["displayvalue"])); |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15360 | Click Tracking | major | always | 05-11-09 13:22 | 05-11-09 13:22 | ramya123 | normal | new | none | none | 2.10.10 | open | 0 | Click Tracking is not working for links in the body of the message, only for those in the footer. |
Hi, Click Tracking is not working for links in the body of the message, only for those in the footer i.e., for unsubsribe and Forward links. Any help would be appreciated. Thanks, Ramya |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15359 | Authentication System | major | always | 03-11-09 00:25 | 14-11-09 02:41 | rrrrob | normal | new | none | none | 2.10.10 | open | 0 | User Specific Authentication Pages Loose Formatting |
when the phplis driven site directs a user to a user specific login page (one that needs a password) the formatting of the page becomes generic causing the user to think they have left the current site. This is causing some users to think they have been redirected under false pretenses. It happens when ever they are asked for their password. There is a complete list of what has been found and done to this point at the following link in the forums http://forums.phplist.com/viewtopic.php?f=17&t=28879 [^] |
Have compared the index files of versions 2.10.9 and 2.10.10 and noticed that most of the changes between the two relate to the unsubscribe function. going to post current findings to the forum as well in more detail. | patch-15359.diff (0 KB) 11-11-09 18:56 |
| ||||||||||||||||||||||||||||||||||||||||||||||||||
| 15358 | Subscriber Import | minor | always | 30-10-09 01:59 | 30-10-09 01:59 | crowdofone | normal | new | none | none | 2.10.10 | open | 0 | Import does not strip doublequote text delimiters when using 'import emails with the same values for attributes' |
By default Openoffice Calc uses the text delimter " when exporting CSV files. When importing to phplist it appears not to remove these which results in email addresses that look like: "name@domain.com" instead of just: name@domain.com. The actual import itself goes fine but then later these doublequotes result in the addresses being regarded as invalid by phplist. Line 407 of importcsv.php includes the code: $line = str_replace('"', '', $line); For whatever reason - i am not a competent enough coder to work out what's happening here - the code above either doesn't get called or does not have the intended effect. As OpenOffice is a popular choice both for regular users and for those looking to convert xls files and export them as csv, i contend that this should just work without having to manually alter the text delimiter. I have twice seen this effect. First when importing a large number of email addresses and then secondly through exporting a CSV file consisting of just two email addresses in an attempt to replicate the behaviour. This appears consistent arcoss both 2.10.9 and 2.10.10. |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15357 | Message Send Process | minor | have not tried | 28-10-09 18:16 | 06-11-09 18:35 | mike mckoy | normal | new | none | none | 2.10.10 | open | 0 | Develope Swift mailer pluggin that would allow phplist message sending to increase exponentionaly! |
Wants to find out where we are with possibly creating a swift mailer pluggin to be added to the defaiult phplist plugin. I have a dedicated server I can donate to development. Swift mailer would allow load balancing between servers with phpmailer doesn't support. Load balancing would safely and effienctly increase phplist performance beyond 30,000 messages per hour. It may make things easier for those using shared hosting as well Some of Swift Mailer Features: * Send uses one single connection to the SMTP server or MTA * Doesn't rely on mail() * Custom Headers * Multiple encoding options * Unlimited redundant connections (can use mixed types too) * Connection rotating/load balancing * TLS Support - for Gmail servers * Embedded Images or other file types * Builds and sends Multipart messages * Sends single-part emails as usual * Fast Cc and Bcc handling * Unicode UTF-8 support, with auto-detection * Handles denied recipients in batch mailing whilst still delivering to the others * Optional auto-detection of SMTP or Sendmail settings * Batch emailing with multiple To's or without * Send to hundreds of thousands of addresses without cron * Support for multiple attachments * Protection against header injection * Set message priority * Request Read Receipts * Sendmail (or other binary) support * Pluggable SMTP Authentication (LOGIN, PLAIN, MD5-CRAM, POP Before SMTP) * Anti-Flooding support (reconnect every X emails) via plugin * Secure Socket Layer connections (SSL) * Loadable plugin support with event handling features |
I have a server i can dedicate to this. Runs CENTOS 5.3 64 bit 3GB of RAM Two athlon 4200 processors (2)250 gb drives in raid 1 |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15356 | All Other | minor | have not tried | 28-10-09 17:09 | 28-10-09 17:09 | Larry Douglas | normal | new | none | none | 2.10.5 | open | 0 | Is there a way to export admins? | Is there a way to export admins? | |||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15355 | RSS | minor | always | 26-10-09 18:20 | 26-10-09 18:20 | metropolitan | normal | new | none | none | 2.10.10 | open | 0 | New subscribers to RSS list digests get RSS items older than the digest time interval |
To quote user "alanf", "When running an RSS e-mail with daily frequency, and another with monthly, I need to keep at least 1 months worth of RSS data on the database. If a NEW user subscribes to the list as 'daily', on the first day the new user will get everything held on the RSS tables on the first e-mail, as nothing has been flagged as being sent to that user. In an ideal world, when a new user subscribes to a daily list, the RSS table would be flagged to excluded everything over a day old for that user, son on the first e-mail they get just the recent RSS data (and the same logic for weeky / monthly )" I would add it may appear like a trivial problem because it only affects new subscribers... except that if you are setting up PHPlist for the first time, and you are importing a list of 10,000 people, and you have a number of RSS feeds that go back a year, suddenly it is not a trivial issue because it will affect 10,000 people. |
Alan's post: http://forums.phplist.com/viewtopic.php?f=17&t=25903&p=69360#p69360 [^] Another report of this same problem: http://forums.phplist.com/viewtopic.php?f=15&t=24458#p67778 [^] |
||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15354 | Interface - Backend | minor | always | 23-10-09 09:24 | 23-10-09 09:24 | tuxick | normal | new | none | none | open | 0 | no default language for admin interface |
i don't see how to set default language for the admin interface. ideally all admin users should be able to set one, but a good start would be setting one in config.php. |
||||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15353 | All Other | feature | random | 23-10-09 03:28 | 23-10-09 03:28 | weiwei | normal | new | none | none | open | 0 | Receive unsubscribe notification from phplist without clicking unsubscribe link |
One of my colleagues received the unsubscribe notification from PHPlist, but she never click on any unsubscribe link from the email. Please advice. |
||||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15352 | User Management | minor | always | 22-10-09 09:30 | 22-10-09 09:30 | titobrasolin | normal | new | none | none | 2.10.9 | open | 0 | Sort by 'entered' and 'modified' not working on page 'users' |
The error is: "Database error 1052 while doing query Column 'entered' in order clause is ambiguous" Looks like it happens only with MySQL 5.0.51 (we have phplists 2.10.9 on MySQL 5.0.41 works fine) =Suggested fix= file: admin/commonlib/pages/users.php line 272: change $order = ' order by ' . $sortby; into $order = ' order by ' . "{$tables["user"]}.$sortby"; |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15351 | Installation | major | always | 20-10-09 20:14 | 29-10-09 17:15 | shez001 | normal | resolved | none | none | 2.10.10 | no change required | 0 | Bug in MySql installation script of PHPList |
After installing PHPList on server and going through the admin panel I noticed that I was receiving errors such as table does not exist. This was very strange so I decided to do some further investigation. Findings: On line number 1087 in the phplist.sql: INSERT INTO `phplist_user_blacklist_data` VALUES ('billgates@microsoft.com','reason','I\\\'m not really that interested in your newsletter anymore. Sorry.'); This is not correct as the \\\ in the query escapes the rest of the sql and the remaining tables are not executed this results in a broken installation. The correct sql is: INSERT INTO `phplist_user_blacklist_data` VALUES ('billgates@microsoft.com','reason','I\'m not really that interested in your newsletter anymore. Sorry.'); After doing this fix and adding the tables below this line number everything worked perfectly. |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15350 | Installation | block | have not tried | 14-10-09 05:18 | 29-10-09 17:17 | LouiseB | normal | feedback | none | none | 2.10.10 | open | 0 | "Send Message" screen is incomplete |
I am using IE 8, and am experiencing the same problem that was reported in issue # 004030. I can see the full screen in your demo, but not in the version I have installed. It was installed using Fantastico and I haven't changed any default config settings. |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15349 | User Management | major | always | 09-10-09 09:32 | 29-10-09 20:34 | lwc | normal | assigned | none | none | 2.10.10 | open | 0 | Need stripslashes when displaying and/or searcing for user attributes |
Just like http://mantis.phplist.com/view.php?id=1152 [^] only for user attributes. This is relevant for: 1) The usage of [attribute] in messages. 2) Searching by attribute in the list of users. 3) Displaying the search result of searching by attribute in the list of users 4) The user's preferences page 5) The admin's edit screen of individual users. Things like such users are being unsearchable (by the relevant attribute) - even if you use slash in your search - is why I classified it as a major error. |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15348 | Subscribe Process | feature | always | 07-10-09 11:32 | 07-10-09 11:32 | lwc | normal | new | none | none | 2.10.10 | open | 0 | Allow admin to approve unsubscribers | Like http://mantis.phplist.com/view.php?id=15176 [^] but for unsubscribers. Those who need such a thing probably don't currently provide an unsubscribe link in their messages at all, so it would be an improvement for them. | |||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15347 | Internationalization (l18n) | feature | N/A | 05-10-09 15:32 | 05-10-09 15:32 | sooskriszta | normal | new | none | none | internationalization | open | 0 | Hungarian front end | Please find text file attached. | hungarian.inc (8 KB) 05-10-09 15:32 | ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15346 | Internationalization (l18n) | feature | have not tried | 05-10-09 04:39 | 05-10-09 04:40 | h2b2 | normal | new | none | none | 2.10.10 | open | 0 | Italian backend translation |
The v2.10.10 backend translation was made available by andypanix in this forum thread: http://forums.phplist.com/viewtopic.php?f=19&t=13780&p=68726#p68672 [^] |
phplist_ita_02-10-09.tgz (47 KB) 05-10-09 04:40 | ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15345 | Interface - Frontend | minor | always | 04-10-09 00:27 | 03-11-09 15:08 | lwc | normal | new | none | none | 2.10.10 | open | 0 | "phplist powered by phplist" in the admin pages. No version in the user pages. |
The user pages display nothing after the word "version". If it's on purpose, the word "version" should be removed and the version number should be removed from the admin log-in page. The admin pages display "phplist powered by phplist". |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15344 | Message Send Process | minor | always | 02-10-09 16:38 | 02-10-09 16:38 | djpauze | normal | new | none | none | 2.10.10 | open | 0 | Error when sending test Message | Database error 1064 while doing query You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ') and user_user_attribute.attributeid = 10' at line 4 | It seems that the message still goes through! My level of expertise in SQL and php is not very high so I havent been able to figure out the route of the problem. I do however get this message anytime I send a test message in phplist. | ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15343 | Interface - Frontend | major | always | 29-09-09 17:31 | 29-09-09 17:31 | dhartford | normal | new | none | none | open | 0 | Directory Listing - application can prevent |
Although Apache/Zend can be configured to prevent Directory Listings, sometimes best to make a best effort that the PHPList application is safe/secure as much as possible without relying on external configurations. Recommend add 'index.html' (even if blank), or similar page to all directories to avoid directory listings. /lists/config /lists/images /lists/images/smiley /lists/js /lists/styles /lists/texts /lists/admin/auth /lists/admin/data /lists/admin/images /lists/admin/images/tabs/ /lists/admin/js /lists/admin/onyxrss /lists/admin/phpmailer /lists/admin/phpmailer/language /lists/admin/plugins /lists/admin/plugins/defaultplugin /lists/admin/plugins/sidebar /lists/admin/styles/ /lists/admin/info/* These have a lot of subdirectories: /lists/admin/commonlib /lists/admin/FCKeditor /lists/admin/lan |
||||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15342 | Interface - Frontend | minor | always | 29-09-09 17:28 | 29-09-09 17:28 | dhartford | normal | new | none | none | 2.10.10 | open | 0 | Password field does not have autocomplete explicitly set |
Password field should have autocomplete explicitly set to off for security reasons. Note that it is a convenience to have it on, but should identify the intent of the PHPlist default install. /lists/admin/login.php: <tr><td><input type=password name="password" value="" autocomplete="off" size=30></td></tr> |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15341 | Interface - Frontend | major | always | 29-09-09 17:24 | 29-10-09 20:37 | dhartford | normal | assigned | none | none | 2.10.10 | open | 0 | security - forgotpassword value not checked/eval'd |
/lists/admin when entering value to send an email for 'forgot password', the value is not checked. Fix included in additional info. |
/lists/admin/index.php, under the if isset($_REQUEST["forgotpassword"]).... #====php 5.1.6 tested fix - filter_var only works on installs with php > 5.2 $parsedforgotpassword = $_REQUEST["forgotpassword"]; $email_regex = '^[a-zA-Z0-9._-]+@[a-zA-Z0-9._-]+\.([a-zA-Z]{2,4})$'; if(!eregi($email_regex, $parsedforgotpassword)){ logEvent(sprintf('Invalid forgotpassword email entered from %s.', $_SERVER['REMOTE_ADDR'])); $page="login"; $msg="invalid email supplied"; }else{ ....normal code.... } #end of email validation check |
||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15340 | Interface - Frontend | minor | always | 28-09-09 15:23 | 28-09-09 15:23 | tuxick | normal | new | none | none | 2.10.10 | open | 0 | allows setting empty email address |
the interface does not check if an email address is empty. this at least happens in the "details of a user" dialog, and probably elsewhere since i found an empty email adress in database. some validation might be useful :) |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15339 | User Management | feature | always | 27-09-09 07:23 | 27-09-09 07:23 | lwc | normal | new | none | none | 2.10.10 | open | 0 | Please add a "reason" field for unconfirmed users and not just for blacklisted ones |
Currently only blacklisted users have a "reason" field. In the long run, I have no idea if a certain user became unconfirmed over time for overquota reasons or for the address actually being wrong. It means I can't be sure if I should give such users another chance at some point. So please add a "reason" field for unconfirmed users as well. |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15338 | Attachments | major | have not tried | 26-09-09 23:20 | 28-09-09 14:27 | buster | normal | new | none | none | 2.10.10 | open | 0 | cgi error |
ver 2.10.10 pretty much installed without a hitch. The error: The specified CGI application misbehaved by not returning a complete set of HTTP headers. This happens when trying to open an attachment link. This message contains attachments that can be viewed with a webbrowser: Location: http://www.waynestreetumc.org/lists/dl.php?id=3 [^] |
My system details are: phplist version: 2.10.10 PHP version: 5.2.10 Browser: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727; InfoPath.1; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729) Webserver: Microsoft-IIS/6.0 Website: http://www.waynestreetumc.org/lists [^] Mysql Info: 5.0.45-log PHP Modules: bcmath calendar com_dotnet ctype date filter ftp hash iconv json odbc pcre Reflection session libxml standard tokenizer zlib SimpleXML dom SPL wddx xml xmlreader xmlwriter cgi-fcgi curl gd gettext mcrypt mhash mime_magic mssql mysql mysqli openssl sockets tidy xsl ionCube Loader Zend Optimizer |
ie7phplisterror.rtf (615 KB) 28-09-09 14:26 |
| ||||||||||||||||||||||||||||||||||||||||||||||||||
| 15337 | Subscribe Process | major | always | 20-09-09 16:46 | 07-10-09 11:12 | lwc | normal | new | none | none | 2.10.10 | open | 0 | The subscribe page lets anyone change anyone's details by "re-subscribing" |
You can bypass the requirement to know your personal key ID in order to change preferences, if you just enter an existing e-mail address in the regulsr subscribe form. True, it's only partial as you can't change selectable options, only adding to them. Obviously you also can't change your e-mail address (as the whole trick relies on using an existing one). That is, anyone can enter your e-mail address and supply new text attributes. Suddenly you find your details contain a different name, town, etc. But if you're listed in list #1 and list #2, if someone enters your e-mail address and lists you only in list #3, it makes you subscribe to #3 in addition to #1 and #2, not instead. |
The direct solution is not to allow entering an existing e-mail address in the subscribe page. Existing e-mail addresses should only be used in the preferences' page. Alternatively, notify the admin about it (like what happens now) but actually let them decide - "someone entered an existing e-mail address in the subscribe page. The following changed (or not) attributes will NOT be approved, unless you click the following link." But this would require two attributes for each attribute - a current one and a waiting-to-be-confirmed one. |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15336 | Attachments | major | always | 18-09-09 12:51 | 22-09-09 11:24 | cazzani | normal | new | none | none | 2.10.10 | open | 0 | when processing queues PHPlist does not attach the file uploaded, it attaches the file only in test messages |
I can regularly upload the file during message preparation and when I send me a test message, I receive it correctly. However, when the same message is queued for delivery, no attachments is being sent. Messages are received without attachments and as administrator I receive error messages stating: Error, when trying to send message xx the attachment yyyyy could not be found |
PHPList 2.10.10 running on Linux centos-5-x86 virtual machine. Sequence of event I tried: - I uploaded the file to be attached: 0803_NI_DAQ_USB_6821.gif - I checked it is the correct attachments repository configured, diectory /tmp, outside the web space, which has the following permission: tmp <dir> Sep 18, 2009 02:04:52 PM drwxrwxrwt root root - Two files are actually there created by PHPlist after upload: 0803_NI_DAQ_USB_68219EnYwd 0.00 kb Sep 18, 2009 02:04:52 PM -rw------- apache apache 0803_NI_DAQ_USB_68219EnYwd.gif 12.22 kb Sep 18, 2009 02:04:52 PM -rw-r--r-- apache apache - I noticed that PHPlist web space is using in using a different account: admin.php 8.95 kb Jun 19, 2009 11:42:24 AM -rw-r--r-- joomlaftp psacln I therefore thought that some permissione problem could be an issue, so I tried to set CHMOD 777 on the two files uploaded, but the end result is still the same: file is attached in test messages, but when queued it is not attached and I get the message: Error, when trying to send message 58 the attachment 0803_NI_DAQ_USB_6821.gif could not be found |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15335 | All Other | major | always | 13-09-09 10:57 | 13-09-09 10:57 | holger | normal | new | none | none | 2.10.10 | open | 0 | Text-Mail with Code |
Hello, i have a Problem with the Version 2.10.10 with text-mails. I have test convert html-message to text and entry text-message in the text-box i have the problem that die text-message are send with html-code like this: <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> [^] <html> <head> <meta http-equiv="content-type" content="text/html; charset=UTF-8"> <title>Newsletter - DLRG Ortsgruppe Altbach </title> </head> <body> <table border="0" cellspacing="0" cellpadding="0" width="611"> <tr valign="top"> <td><img src="header_left.gif" height="204" width="19" border="0"></td> <td><img src="header_right.gif" height="204" width="592" border="0"></td> </tr> <tr valign="top"> <td width="19"></td> <td style="padding: 10px 10px 10px 20px; font-family: Arial,Helvetica,sans-serif; font-size: 12px; line-height: 16px;" bgcolor="#ebf2f5"> <p align="center" style="font-family: Arial,Helvetica,sans-serif; font-size: 10px;color:gray;">(Falls Sie diesen Newsletter nicht lesen können, klicken Sie bitte http://newsletter.dlrg-altbach.de/archiv.php?x=128.) [^] Hallo Holger Schuker,
heute geht es wieder los bei der DLRG Ortsgruppe Altbach mit dem Falls Sie diese doch nicht mehr wissen sollten schauen Sie einfach hier <h3>Umfrage Newsletter</h3> Unser Newsletter besteht nun seit mehr als 6 Monaten und wir würden <a border="0" target="_blank" oder kopieren folgende URL: <span style="font-size: xx-small;"><strong>Eine Bemerkung zum Ihre <hr> <div style="font-family: Arial,Helvetica,sans-serif; font-size: 10px;color:gray;"> Newsletteroptionen: Abmelden: http://newsletter.dlrg-altbach.de/?p=unsubscribe&uid=c77fe9412979e4cf509503cf7e5d90a0 [^] Newsletter weiterleiten: http://newsletter.dlrg-altbach.de/?p=forward&uid=c77fe9412979e4cf509503cf7e5d90a0&mid=128 [^] Daten ändern: http://newsletter.dlrg-altbach.de/?p=preferences&uid=c77fe9412979e4cf509503cf7e5d90a0 [^] </div> </td> </tr> <tr valign="top"> <td width="19"></td> <td><img src="footer.gif" height="44" width="592" border="0"></td> </tr> </table> </body> </html> -- Powered by PHPlist, www.phplist.com -- |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15334 | User Management | major | sometimes | 10-09-09 15:10 | 10-09-09 15:10 | Danail Traichev | normal | new | none | none | 2.10.10 | open | 0 | When user requests personal URL for changing its preferences, wrong uid is sent to user, so he cannot change them |
With some users (for example with one that was added by admin without confirmation email), when user requests personal URL for changing its preferences, email is sent, but the URL in it contains wrong uid, so user cannot change its settings never. For example, received uid is M80c18861476fe93aebff73a35dc393 And actual one (also in DB) is 4d80c18861476fe93aebff73a35dc393 As you see, they are "almost" the same, but not exacly, so user goes to default preferences page when clicks on the link. |
I have clean phplist installation with only one change - patch suggested here: http://forums.phplist.com/viewtopic.php?f=17&t=28038#p67641 [^] I have applied it because I send messages in Cyrillic and without this change they are received in wrong codepage. I don't think that this change is related to the bug, because it happens even if I restore original file. I send messages in codepage windows-1251. |
||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15333 | User Management | major | always | 09-09-09 15:41 | 10-09-09 01:58 | gazouteast | normal | new | none | none | 2.10.10 | open | 0 | Failure of navigation buttons in list member lists has returned in stable version |
First reported here - http://mantis.phplist.com/view.php?id=15282#bugnotes [^] Pablo posted he'd fixed the issue in early August 2009 in the stable release download. The new download obtained on 6 Sept 2009 does not have the fix applied. I would have posted in the original topic but someone closed it. |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15332 | Interface - Frontend | minor | always | 07-09-09 14:03 | 07-09-09 14:03 | tuxick | normal | new | none | none | 2.10.10 | open | 0 | "import emails" is confusing and wrong |
The dialog "import emails" is confusing, sounds like importing emails instead of email addresses. In some cases it might be "import from emails" or something. |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15331 | Internationalization (l18n) | text | always | 06-09-09 16:27 | 06-09-09 16:27 | Tokapi | normal | new | none | none | 2.10.10 | open | 0 | Dutch Translation |
Hi, Over the past moths, I've been correcting the dutch translation. The current files have a lot of faulty typos and strange words. Most of the general used files should be fixed and are recompared with the original English files again. They are all zipped in attachment. Also noticed that bug 0015282 (next page doesn't work in listovervue) still isn't fixed in 2.10.10, so added it the package too. Greetings, B. |
UpdateDutch2.10.10.zip (91 KB) 06-09-09 16:27 | ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15330 | All Other | minor | have not tried | 06-09-09 07:56 | 06-09-09 07:56 | Philip vd Eijk | normal | new | none | none | open | 0 | software error during update list subscriber | see attachment with URL and source | HHerror.txt (6 KB) 06-09-09 07:56 | |||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15329 | HTML Email Support | minor | always | 03-09-09 18:10 | 03-09-09 18:20 | pablo | normal | resolved | none | none | fixed | 0 | htmlemail checkbox info not kept when adding individual user | The same problem reported in 0015312 but when adding a single user. Solved applying patch suggested there to line 161 of members.php. | ||||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15328 | Interface - Backend | minor | always | 03-09-09 16:23 | 03-09-09 16:23 | rockit | normal | new | none | none | 2.10.10 | open | 0 | csv import html-email flag not imported into database |
importing a csv-users file will not set the html-mail-format flag chosen as standard. bugfix/solution admin/import1.php on line 211 has to be changed from $query = sprintf('INSERT INTO %s (email,entered,confirmed,uniqid,htmlemail) values("%s",now(),%d,"%s","%s")', $tables["user"],$email,$notify != "yes",$uniqid,$htmlemail); to $query = sprintf('INSERT INTO %s (email,entered,confirmed,uniqid,htmlemail) values("%s",now(),%d,"%s","%s")', $tables["user"],$email,$notify != "yes",$uniqid,$_REQUEST['htmlemail']); |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15327 | Bounce Management | feature | always | 03-09-09 16:02 | 03-09-09 16:02 | lwc | normal | new | none | none | 2.10.10 | open | 0 | Reading unidentified bounces |
There are certain unofficial ways to read them via PHPMyAdmin. But how about an official one? Please allow a way to simply read such bounces. While you can't handle them, you can still display them and let us deal with them manually. Thanks! |
http://forums.phplist.com/viewtopic.php?t=28129 [^] | ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15326 | Interface - Frontend | tweak | always | 03-09-09 15:59 | 07-10-09 11:09 | lwc | normal | new | none | none | 2.10.10 | open | 0 | "X bounces" in the "View Bounces" page should renamed to "X unidentified bounces" | Otherwise one has to figure out on their own what it means. |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15325 | Message Send Process | minor | have not tried | 01-09-09 22:08 | 01-11-09 17:42 | h2b2 | normal | new | none | none | 2.10.10 | open | 0 | SMTP code is partially broken (revisited) |
cipixul reports that the code changes applied to "admin/class.phplistmailer.php" in order to fix issue 8590 can result in trouble: ===== Start Quote ===== The code is wrong because it uses PHPMAILERHOST only if the admin set phpmailer_user, which is not always the case, and as we run several smtpd servers on same machine, we don't authenticate to our smtpd instances because they're local. ===== End Quote ===== Source: http://forums.phplist.com/viewtopic.php?f=17&t=23830#p67628 [^] |
cipixul suggests the following changes to fix the issue: ===== Start Quote ===== The correct code which works in our case and in all other cases I can think of should be this one: if (defined('PHPMAILERHOST') && PHPMAILERHOST != '') { //logEvent('Sending authenticated email via '.PHPMAILERHOST); //$this->addCustomHeader("X-Mailer-Method: Dedicated SMTP"); $this->SMTPAuth = true; $this->Helo = getConfig("website"); $this->Host = PHPMAILERHOST; if ( isset($GLOBALS['phpmailer_smtpuser']) && $GLOBALS['phpmailer_smtpuser'] != '' && isset($GLOBALS['phpmailer_smtppassword']) && $GLOBALS['phpmailer_smtppassword'] ) { $this->Username = $GLOBALS['phpmailer_smtpuser']; $this->Password = $GLOBALS['phpmailer_smtppassword']; } $this->Mailer = "smtp"; } ===== End Quote ===== Related to: http://mantis.phplist.com/view.php?id=8590 [^] Related forum thread: http://forums.phplist.com/viewtopic.php?f=17&t=23830#p67628 [^] |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15324 | Interface - Frontend | major | sometimes | 26-08-09 12:27 | 29-08-09 13:34 | lwc | normal | new | none | none | 2.10.10 | open | 0 | Subject and From turn to Gibberish when saved not in English |
This is how the subject of this bug report should be phrased. Please direct all the specific bug reports (e.g. "subject doesn't work in my language" that won't consider other people) in here. The problem is in public_html/lists/admin/send_core.php: iconv('ISO-8859-1','UTF-8',$subject) and htmlentities(iconv('ISO-8859-1','UTF-8',$from) - those statements assume one uses ISO-8859-1, which is why you only get bug reports from people using other languages... Note those statements were only added in recent versions. For example, v2.10.7 didn't have them and thus had no problems. Here's the fix: // custom code - start $utf8_subject = $subject; $utf8_from = $from; if (strcasecmp($GLOBALS['strCharSet'], 'utf-8') <> 0) { $utf8_subject = iconv($GLOBALS['strCharSet'],'UTF-8',$utf8_subject); $utf8_from = iconv($GLOBALS['strCharSet'],'UTF-8',$utf8_from); } $maincontent .= ' <tr><td>'.Help("subject").' '.$GLOBALS['I18N']->get("Subject").':</td> <td><input type=text name="msgsubject" //value="'.htmlentities($utf8_subject,ENT_QUOTES,'UTF-8').'" size=40></td></tr> <tr> <td colspan=2> </td></tr> <tr><td>'.Help("from").' '.$GLOBALS['I18N']->get("fromline").':</td> <td><input type=text name=from value="'.htmlentities($utf8_from,ENT_QUOTES,'UTF-8').'" size=40></td></tr> <tr><td colspan=2> </td></tr>'; // custom code - end |
The "//" in "//value" shows up in the HTML code. See bug report 0015323 |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15323 | Interface - Frontend | tweak | always | 26-08-09 12:25 | 26-08-09 12:25 | lwc | normal | new | none | none | 2.10.10 | open | 0 | The Subject uses "//value=" instead "value=" |
The problem is in public_html/lists/admin/send_core.php: <td><input type=text name="msgsubject" //value=... It seems not to break the HTML code, but it should be fixed nonetheless. The fixed code: <td><input type=text name="msgsubject" value=... |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15322 | Interface - Frontend | minor | always | 25-08-09 16:43 | 25-08-09 16:43 | lwc | normal | new | none | none | 2.10.10 | open | 0 | $strPreferHTMLEmail doesn't announce no HTML=no attachments |
Most people take it for granted that HTML=HTML code. But in phplist's world, it also means no attachments. No subscriber knows that when they face the HTML decision. Therefore, please replace $strPreferHTMLEmail = 'I prefer to receive emails in HTML format'; With $strPreferHTMLEmail = 'I prefer to receive emails in HTML format (Note: cancelling this option means among other things replacing any attachments with external links!)'; |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15321 | Message Management | tweak | always | 25-08-09 16:17 | 25-08-09 16:17 | lwc | normal | new | none | none | 2.10.10 | open | 0 | Linebreaks in text link replacements of attachments |
class.phplistmailer.php: function append_text($text) { if ($this->AltBody) { $this->AltBody .= html_entity_decode($text ,ENT_QUOTES, 'UTF-8' );#$text; } else { // custom code - start $this->Body .= html_entity_decode("$text\n" ,ENT_QUOTES, 'UTF-8' );#$text; // custom code - end } } Without that extra \n, the links and links' intro are really unreadable. You've already fixed sendemaillib.php to include one \n, so please add this fix too. |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15320 | Subscribe Process | feature | always | 11-08-09 11:11 | 13-11-09 20:57 | Thorsten Albrecht | normal | new | none | none | 2.10.10 | open | 0 | Unsubscription should only be possible by a subscriber himself and not by a third person |
It's possible to unsubscribe somebody else just with the knowledge of his email address (e.g. with mydomain.com/lists/?unsubscribe). One does not have to know his personal preference/unsubscribe link. The unsubscribed user is _immediately_ put on the blacklist which is probably not what he want's to. I think that this should not be possible. This is an inconsitent behaviour related to the procedure of suscribing where a confirmation mail is needed. Also, this is an security issue. Unsubscribing should only be possible using one's personal preference link which is normally included in every mailing or which can be sent to the user by mail upon request. If the unsubscribe process should be possible using the unsubscribe link as described above (without any userid), there should be sent a confirmation link to the user. This functionality should be provided without the need of enabling user passwords. Thorsten |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15319 | Subscriber Import | minor | always | 11-08-09 10:05 | 11-08-09 10:09 | Thorsten Albrecht | normal | new | none | none | 2.10.10 | open | 0 | Option "I prefer to receive html emails" is beeing ignored when importing simple email text file | When importing a simple email address list as simple text file, selecting the checkbox "I prefer to receive html emails" is beeing ignored. (phplist 2.10.10, FF3.5). |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15318 | Bounce Management | major | always | 03-08-09 13:37 | 03-08-09 13:37 | robharrigan | normal | new | none | none | 2.10.2 | open | 0 | Index needed on phplist_user_message_bounce table |
I've been experiencing some painfully slow processing time using processbounces, I suspected it was due to a missing index and the large size of the table (50000+ records). My response time improved dramatically, finishing in 2 minutes instead of 6-8 hours, after adding another index to the phplist_user_bounce_message table like so: mysql> create index message_lookup using btree on phplist_user_message_bounce (message); |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15317 | Configuration | minor | always | 03-08-09 13:02 | 03-08-09 13:02 | Richard | normal | new | none | none | 2.10.10 | open | 0 | $_SERVER['DOCUMENT_ROOT'] could be moved into configuration file |
In various source files, $_SERVER['DOCUMENT_ROOT'] is used. For a client of mine, this is not ideal, since he has several top level domain names under one shared hosting account. A simple solution would be to replace all uses of the above mentioned server variable with a new variable that would be set in config/config.php. By default, it would take the value $_SERVER['DOCUMENT_ROOT'], but one would be enabled to define an absolute path to the root of his website by hand. I would like to submit a patch, but I will need some time as I still have to set up the development environment. |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15316 | Interface - Backend | major | always | 03-08-09 06:06 | 03-08-09 06:06 | Bedlore | normal | new | none | none | 2.10.9 | open | 0 | baskslashed prepended to apostrophe even with magic quotes on |
In the "details of a user" view, ie. /admin/?page=user if any user information contains an apostrophe upon save it will have a backslash added. I have confirmed my magic quote are on (if I disable them in I then get a PHPList warning). I also noted that if I update the user via the users preference view, ie. /?p=preferences&uid= then it works correctly. |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15315 | All Other | trivial | always | 01-08-09 15:45 | 01-08-09 15:45 | thespecialistsa | normal | new | none | none | 2.10.10 | open | 0 | Mail failure - malformed recipient address |
A message that you sent contained one or more recipient addresses that were incorrectly constructed: Crazy Deals: missing or malformed local part (expected word or "<") This address has been ignored. There were no other addresses in your message, and so no attempt at delivery was possible. ------ This is a copy of your message, including all the headers. ------ To: Crazy Deals Subject: List unsubscription Recieved: Date: Sat, 1 Aug 2009 17:18:14 +0200 Return-Path: noreply@crazydealssa.co.za From: Webmaster - Crazy Deals <noreply@crazydealssa.co.za> Message-ID: <136ee9a20b0a1651ec2faa14601d5e3f@crazydealssa.co.za> X-Priority: 3 X-Mailer: PHPMailer [version 1.73] X-Mailer: phplist v2.10.10 X-MessageID: systemmessage X-ListMember: Crazy Deals Precedence: bulk MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Content-Type: text/plain; charset="UTF-8" taylor.john1@insightbb.com has unsubscribed No Reason given |
Hardware Label: bloglinessa Hardware Type: Server Hardware IP: 174.132.255.114 Deployment Date: Jan-29-2009 Hardware Status: Hardware in use QTY Hardware Component 1 Western Digital \ 250GB:SATA:7200RPM \ WD2500JD 1 Maxtor \ 250GB:SATA:7200RPM \ MaxLine Plus II 1 Dell \ Single socket 1067FSB - Quad Core Capable \ PowerEdge 840 1 Unknown \ Onboard \ SATA 1 Intel \ 1.86 GHz 1066FSB - Conroe \ Xeon 3040 (Dual Core) 4 Generic \ 1024 MB \ DDR2 667 ECC Installed Software - CentOS Enterprise Linux - OS ES 5.0 - cPanel, Inc. cPanel STABLE |
||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15314 | User Management | feature | always | 28-07-09 15:13 | 28-07-09 20:25 | LexHair | normal | new | none | none | 2.10.10 | open | 0 | Multiple Owners Per List |
First requested in Issue#0002483. Still desired for my use where there are multiple admins but only 1 super-admin. Right now, only 1 admin (the owner) and the super-admin can use a list. Please reconsider this feature. http://mantis.phplist.com/view.php?id=2483 [^] |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15313 | Message Send Process | feature | always | 26-07-09 19:28 | 26-07-09 20:36 | Payne Chu | normal | new | none | none | 2.10.10 | open | 0 | fckeditor cannot display correctly |
Open the admin panel select "send a message" The fckeditor cannot appear correctly in the message text. and also found javascript error. |
see the attached file |
PICD9.tmp.jpg (109 KB) 26-07-09 19:28 issue.jpg (225 KB) 26-07-09 20:36 | |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15312 | Subscriber Import | minor | always | 24-07-09 18:44 | 03-09-09 18:18 | noblestudios | normal | resolved | none | none | 2.10.10 | fixed | 0 | Checking "I prefer to receive emails in HTML format" on import has no effect |
On importing a rather large list, we found that all addresses were set as text only, even though we had chosen "I prefer to receive emails in HTML format" during the import. Subsequent testing revealed that this checkbox was being ignored entirely. This error can be fixed by changing line 212 of admin/import1.php from: $tables["user"],$email,$notify != "yes",$uniqid,$htmlemail); to: $tables["user"],$email,$notify != "yes",$uniqid,$_POST['$htmlemail']); |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15311 | Subscribe Process | major | always | 23-07-09 19:32 | 23-07-09 19:32 | gwolff2005 | normal | new | none | none | 2.10.10 | open | 0 | Email field and Email confirmation field are default fields on subscription page and cannot be deleted |
I am trying to generate my own subscription page but the fields email and email confirmation are always already in there, but not!!!! existent and therefore not deletable under attributes. I want to add the Name field on the subscription page but the list order then does not work. The two fields (email and confirmation) are always on the top. They are not under attributes, but just in the subsribelib2.php file as the following code(s. additional information) If I delete that code and add my own email and confrimation field on the subscrition page phplist tells me "ENTER A VALID EMAIL ADDRESS" How can I either delete THE "PREINSTALLED"??? email and confirmation field, without getting error messages or how can I add just the name field but put it on the top of the preinstalled emailfield?? Ugently need your help!!!! Thank you! |
$html = ''; if (!isset($_GET['page']) || (isset($_GET['page']) && $_GET["page"] != "import1")) $html = sprintf(' <tr><td><div class="required">%s</div></td> <td class="attributeinput"><input type=text name=email value="%s" size="%d"> <script language="Javascript" type="text/javascript">addFieldToCheck("email","%s");</script></td></tr>', $GLOBALS["strEmail"],htmlspecialchars($email),$textlinewidth,$GLOBALS["strEmail"]); // BPM 12 May 2004 - Begin if ($emaildoubleentry=='yes') { if (!isset($_REQUEST['emailconfirm'])) $_REQUEST['emailconfirm'] = ''; $html .= sprintf(' <tr><td><div class="required">%s</div></td> <td class="attributeinput"><input type=text name=emailconfirm value="%s" size="%d"> <script language="Javascript" type="text/javascript">addFieldToCheck("emailconfirm","%s");</script></td></tr>', $GLOBALS["strConfirmEmail"],htmlspecialchars(stripslashes($_REQUEST["emailconfirm"])),$textlinewidth, $GLOBALS["strConfirmEmail"]); } |
||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15310 | Internationalization (l18n) | major | N/A | 13-07-09 13:51 | 13-07-09 13:51 | localicer | normal | new | none | none | 2.10.10 | open | 0 | Hungarian langpack |
I completed the Hungarian language pack for PHPlist 2.10.10, both back-end and front-end in formal style. Enjoy! |
The character set of the files in the attached pack is UTF-8 w/o BOM. | phplist-2.10.10_hu-HU.zip (86 KB) 13-07-09 13:51 | |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15309 | Interface - Frontend | crash | always | 08-07-09 20:27 | 07-11-09 02:01 | flobee | normal | assigned | none | none | open | 0 | get blacklisted and see the html output when tring to subscribe |
crash because its visible and customer in bad mood! get blacklisted and see the html output when trying to subscribe to a list: dublicate html output. :-( v2.10.10 |
also: put css classes to input fields and a different to the submit input field to have a better controll for visual changes. customers nevver accept a standard way! if you need help commiting bugs-fixes to svn let me know. i will not put any reports, no time for extras, but i'm willed to help to make this app better. flobee |
demo.sql.gz (128 KB) 07-11-09 01:58 bug.png (105 KB) 07-11-09 02:01 |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15308 | Message Send Process | feature | always | 06-07-09 00:44 | 04-08-09 13:30 | rjc | normal | new | none | none | 2.10.10 | open | 0 | Embedding images in CONTENT section not working |
I've found an issue in v2.10.10 (which others have reported since v2.10.7 or 2.10.8). I believe it's started since the upgrade to the new version of fckeditor (2.6.3?). Embedding images in the content section, which was added as a feature sometime after v2.10.4, was not working because the path was resolving incorrectly. I have found the fix for it, and just letting you know officially in Mantis so you can double-check and make adjustments in v2.10.11. My discussion of the cause of the problem is here: http://forums.phplist.com/viewtopic.php?f=7&t=10082&start=30#p63692 [^] And the fix for the issue is here: http://forums.phplist.com/viewtopic.php?f=7&t=10082&start=30#p63693 [^] |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15307 | All Other | minor | have not tried | 28-06-09 22:39 | 28-06-09 22:39 | h2b2 | normal | new | none | none | 2.10.10 | open | 0 | Forward feature incompatible with < PHP 5.1.0 because of "htmlspecialchars_decode" function |
bdario reports a PHP version incompatibility in the phpList forward feature applied in lists/index.php: ======== Start quote ========= after putting error_reporting(E_ALL) inside the forwardPage() function i got this error: Fatal error: Call to undefined function: htmlspecialchars_decode() in /var/www/vhosts/rsync/unitec/lists/index.php on line 817 phplist version 2.10.10 The "htmlspecialchars_decode" function exists only on PHP 5 >= 5.1.0 while my server PHP Version is 4.3.10-22. ======== End quote ========= ref: http://forums.phplist.com/viewtopic.php?f=6&t=23318#p63411 [^] |
bdario suggests the following fix: ======== Start quote ========= So I found a replacement of that function for PHP4 and I added the code just before the calling of forwardPage function, on line # 745 of the file index.php if (!function_exists("htmlspecialchars_decode")) { function htmlspecialchars_decode($string, $quote_style = ENT_COMPAT) { return strtr($string, array_flip(get_html_translation_table(HTML_SPECIALCHARS, $quote_style))); } } and now it works ======== End quote ========= ref: http://forums.phplist.com/viewtopic.php?f=6&t=23318#p63411 [^] |
||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15306 | All Other | minor | have not tried | 26-06-09 09:43 | 28-06-09 23:00 | kbh | normal | new | none | none | 2.10.10 | open | 0 | Under 'Lists' 'view members' display show first 50 members; if i clik next it does not move |
there 2000+ members in the list; i cannot go 'next' when it's clicked! help appreciated |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15305 | Subscriber Import | minor | always | 14-06-09 15:32 | 14-06-09 15:32 | Statick | normal | new | none | none | 2.10.10 | open | 0 | unable to select "no value" for default country attribute when importing users |
when importing a list of email addresses from a CSV file, using the "import emails with the same values for attributes" function, it is not possible to select "no value" for the default country attribute. by contrast, when adding a user, it is possible to select "no value" for this attribute. this means that when importing a list of email addresses of unknown origin, the admin is forced to choose a country (probably afghanistan, being the first in the list) for these users. |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15304 | Interface - Backend | major | always | 09-06-09 21:18 | 09-06-09 21:18 | mrmusicman86 | normal | new | none | none | 2.10.10 | open | 0 | Can't delete attributes on Configure Attributes page |
When you click on the tag then click delete, it will not delete. http://www.tothedeathband.com/lists/listadmin/?page=attributes [^] |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15303 | Message Send Process | minor | always | 09-06-09 20:40 | 30-08-09 17:20 | tipichris | normal | new | none | none | 2.10.10 | open | 0 | Signatures added twice, and in invalid ways |
If an HTML template includes a [SIGNATURE] placeholder, the signature is added both at the place holder and appended to the end of the message. Additionally, if the template includes the complete HTML, the appended signature is added after the closing </html> tag. The following patch resolves these issues: --- lists/admin/sendemaillib.php.orig Sun May 31 21:58:10 2009 +++ lists/admin/sendemaillib.php Tue Jun 9 20:28:03 2009 @@ -239,7 +239,7 @@ ## Parse placeholders #0013076: Blacklisting posibility for unknown users - foreach (array("forwardform","subscribe","preferences","unsubscribe","signature", 'blacklist') as $item) { + foreach (array("forwardform","subscribe","preferences","unsubscribe", 'blacklist') as $item) { if (eregi('\['.$item.'\]',$htmlmessage,$regs)) { $htmlmessage = eregi_replace('\['.$item.'\]',$html[$item],$htmlmessage); // unset($html[$item]); //ASK: Why was this done? It breaks placeholders in the footer @@ -301,7 +301,7 @@ if (eregi("\[SIGNATURE\]",$htmlmessage)) $htmlmessage = eregi_replace("\[SIGNATURE\]",$html["signature"],$htmlmessage); elseif ($html["signature"]) - $htmlmessage .= ' '.$html["signature"]; + $htmlmessage = addHTMLFooter($htmlmessage, ' '. $html["signature"]); if (eregi("\[FOOTER\]",$textmessage)) $textmessage = eregi_replace("\[FOOTER\]",$text["footer"],$textmessage); else |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15302 | HTML Email Support | minor | always | 07-06-09 03:16 | 07-06-09 03:16 | ivanfong | normal | new | none | none | 2.10.10 | open | 0 | "Send this user HTML emails" set to 0 when user is added through "list membership" |
Steps to reproduce the bug: 1. Click "Lists" 2. Click "View Members" in any mail list 3. Input a NEW user email address and click "Add" 4. System report "No user found with that email" 5. Check the "I prefer to receive emails in HTML format" checkbox 6. Click "Add User" button 7. System report "User Added". 8. Click "Users" and input the new email to find the user 9. The "Send this user HTML emails" is set to 0 |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15301 | Message Send Process | minor | sometimes | 03-06-09 01:38 | 25-08-09 04:49 | danjfoley | normal | new | none | none | 2.10.10 | open | 0 | function UserAttributeValue will end up with no value in $val_ids[0] causing sql command to fail |
function UserAttributeValue in file commonlib/lib/userlib.php line 245: $val_ids[0] = cleanCommaList($val_ids[0]); at times $val_ids[0] will have one value in it.. and after the run of cleanCommaList $val_ids[0] will be empty. Thus causing the resulting SQL in this function that expects there to be a values in val_ids[0] to fail. |
in a run of 1132 users seems to only happen my 30 or so times. I have traced it down to failing here. I have output the value before and after the cleanCommaList. example: before: $val_ids[0] = "32" after: $val_ids[0] = ""; |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15300 | Subscribe Process | major | always | 02-06-09 15:20 | 29-10-09 17:21 | spiro | normal | assigned | none | none | 2.10.10 | open | 0 | Resubscribing previous user (i.e. blacklisted) |
There are two possibilities with this depending on whether users are required to use a password. config.php define("ASKFORPASSWORD",0); With the above setting in config it still only works if a fix that I found in the forum is applied to the admin/subscribelib2.php around line 365 under "if ($blacklisted) {" rem out "return 1". This then allows the new subscription to send out the request for confirmation email and once the url in that is clicked the user is removed from being blacklisted. With the ASKFORPASSWORD set to 1, when someone tries to resubscribe the subscription page asks for a password to be created and then reconfirmed as with any user trying to subscribe with the password option switched on. However, instead of the system updating the password with the new one from this registration as it does with the rest of the user details being resubscribed, it reloads the subscribe page stating that the email already exists with a different password, breaking the resubscription process unless the user knows or requests their old password. It would be cleaner if whatever password they chose upon attempting to resubscribe was taken as their new data as it does with other attributes from the subscribe page. |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15299 | Message Send Process | major | have not tried | 01-06-09 19:41 | 01-06-09 19:41 | tipichris | normal | new | none | none | 2.10.10 | open | 0 | 'Short' php tag in fckphplist.php causes FCKEditor not to load |
I have tracked a problem with FCKEditor failing to load to a 'short' PHP tag in fckphplist.php causing that file not to parse. The following patch resolves the issue: --- fckphplist.php.orig Mon Jun 1 19:08:47 2009 +++ fckphplist.php Mon Jun 1 19:40:52 2009 @@ -1094,7 +1094,7 @@ FCKConfig.MsWebBrowserControlCompat = false ; FCKConfig.PreventSubmitHandler = false ; -<? +<?php exit; } elseif ($_GET["action"]) { |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15298 | Message Send Process | major | always | 28-05-09 12:53 | 28-05-09 12:53 | marekb | normal | new | none | none | 2.10.10 | open | 0 | userdata substitution in URL not working for UTF databases | On a UTF-8 database, [URL:[extradata]] would not work. |
Made a fix in : function fetchUrl($url,$userdata = array()) { require_once "HTTP/Request.php"; if (sizeof($userdata)) { foreach ($userdata as $key => $val) { $url = utf8_encode(eregi_replace("\[$key \]",urlencode($val),utf8_decode($url))); } } |
||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15297 | Message Send Process | minor | always | 27-05-09 19:48 | 06-07-09 00:32 | pvibert | normal | new | none | none | 2.10.10 | open | 0 | config.php path wrong in FCKeditor config.php |
When using the Add Image feature in FCKEditor and clicking Browse server, it returns: "The server The server didn't send back a proper XML response." The path in: lists/admin/FCKeditor/editor/filemanager/connectors/phplist/config.php (lines 28 and 29) tries to load config.php 2 levels too high: elseif (is_file('../../../../../../../../config/config.php')) { include "../../../../../../../../config/config.php"; it should be: elseif (is_file('../../../../../../config/config.php')) { include "../../../../../../config/config.php"; |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15296 | Bounce Management | minor | have not tried | 22-05-09 13:23 | 28-08-09 06:57 | h2b2 | normal | new | none | none | 2.10.10 | open | 0 | Cannot increase bounce count manually |
This issue was reported by ligie: ====Start quote==== when trying to increase a users bouncecount in PHPlist 2.10.10 manually on "view a bounce", the button "do the above" does nothing at all. I have checked the code in bounce.php there is a line if (isset($userid) && $amount) The problem seems to be, that $amount is never set. When I add the line $amount=$_GET["amount"]; everything is working. ==== End quote ==== Ref: http://forums.phplist.com/viewtopic.php?p=62388#p62388 [^] |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15295 | HTML Email Support | minor | always | 18-05-09 11:07 | 18-05-09 11:07 | ces | normal | new | none | none | 2.10.10 | open | 0 | typo in admin/message.php:58 |
is echo "<table border=\"1>\""; should be echo "<table border=\"1\">"; |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15294 | User Management | major | always | 18-05-09 05:01 | 21-05-09 01:00 | RayW | normal | new | none | none | 2.10.10 | open | 0 | ADMIN function- will only list 1st 50 users, and SEARCH function will not respond |
I have 147 admins in my list, it shows 1st 50. the > >> nav buttons will not show addl admins. I also tried the SEARCH for a full and a partial admin name, but system would not respond. This feature works fine in 2.10.5 Ray |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15293 | Interface - Backend | major | always | 17-05-09 23:03 | 18-05-09 01:50 | meeble | normal | new | none | none | 2.10.10 | open | 0 | Cannot delete Attributes via the admin system |
From this page: http://meeble.com/lists/admin/?page=attributes [^] When I 'Tag' an attribute or several attributes, and then hit the Delete button, they remain. |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15292 | Template Management | minor | always | 15-05-09 03:55 | 29-08-09 13:44 | h2b2 | normal | new | none | none | 2.10.10 | open | 0 | View templates generates a blank page |
When trying to preview templates and clicking on the "view" link (e.g. lists/admin/?page=viewtemplate&id=1) the resulting page doesn't display the template preview. This issue was reported by astralbaby and confirmed on my system. ref: http://forums.phplist.com/viewtopic.php?p=62159#p62159 [^] |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15291 | Message Send Process | major | always | 15-05-09 02:28 | 01-11-09 17:23 | openside | normal | new | none | none | 2.10.10 | open | 0 | SMTP send won't work without authentication |
Logic in constructor of class PHPlistMailer is wrong in the case of using SMTP. The offending code is: if (defined('PHPMAILERHOST') && PHPMAILERHOST != '') && isset($GLOBALS['phpmailer_smtpuser']) && $GLOBALS['phpmailer_smtpuser'] != '') { .... } SMTP will only be set if phpmailer_smtpuser has been set in the configuration. This precludes the use of SMTP servers which do not require authentication. The fix is simple and is left as an exercise for the maintainers. |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15290 | Subscribe Process | minor | always | 14-05-09 07:43 | 04-10-09 07:28 | h2b2 | normal | new | none | none | 2.10.10 | open | 0 | v2.10.10 - Second subscribe window appearing when re-subscribing a previously unsubscribed user |
If a previously unsubscribed user attempts to re-subscribe, a second window is displayed over the first. This issue has been reported in http://forums.phplist.com/viewtopic.php?f=15&t=24579#p62107 [^] Confirmed on my system - |
This issue was previously reported for v.2.10.8 and 2.10.9, and was flagged as fixed in v2.10.10. See http://mantis.phplist.com/view.php?id=15240 [^] See also: http://forums.phplist.com/viewtopic.php?p=58635#p58635 [^] My system info: phplist 2.10.10 Linux/Apache PHP 5.2.3 MySQL 4.1.12 |
second_window_bug_patch.zip (1 KB) 04-10-09 07:27 |
| ||||||||||||||||||||||||||||||||||||||||||||||||||
| 15289 | Subscribe Process | minor | always | 14-05-09 07:26 | 07-08-09 20:22 | h2b2 | normal | assigned | none | none | 2.10.10 | open | 0 | v2.10.10: UNSUBSCRIBE_JUMPOFF doesn't seem to work for personalized unsubscribe link |
When UNSUBSCRIBE_JUMPOFF" is set to 1 in config.php, the script still displays the 'tell us why' text box when using a _personalized unsubscribe_ link*** (unsubscribe url+uid, e.g. lists/?p=unsubscribe&uid=c2672b3f595..etc.) is used. The "Tell us why" text box is NOT displayed if a _non-personalized link_ (e.g. lists/?p=unsubscribe) is used. |
This issue was previously reported (and partly fixed) in http://mantis.phplist.com/view.php?id=15212 [^] system info: phplist 2.10.10 Linux/Apache PHP 5.2.3 MySQL 4.1.12 |
||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15288 | Command Line | minor | have not tried | 13-05-09 16:40 | 07-09-09 17:19 | h2b2 | normal | assigned | none | none | 2.10.10 | open | 0 | v2.10.10: Commandline cron not working |
Following issue was reported by jfm5440: ==== Start Quote ==== My command line processqueue cron jobs worked fine under 2.10.4 but after upgrade to 2.10.10 they stopped. It looks like the parameters are not getting passed. I have the "$commandline_users = array();" set so no user id is needed. ==== Well it appears to be a PHP register_globals problem. If i stub out require_once dirname(__FILE__) .'/commonlib/lib/unregister_globals.php'; from index.php the cli works. I know there are security implications in leaving register_globals on (which is my php.ini default because I want to for some old scripts). but index.php should work without global registration right? anyway if I edit .htaccess and add php_flag register_globals off the cli continues to work fine. ==== End Quote ==== Source: http://forums.phplist.com/viewtopic.php?f=17&t=24515 [^] |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15287 | Message Management | minor | sometimes | 12-05-09 23:28 | 21-10-09 03:21 | h2b2 | normal | new | none | none | 2.10.10 | open | 0 | v2.10.10: FCKeditor doesn't load when opening the 'send a message' page. |
Several users reported FCKeditor didn't load when opening the 'send a message' page. taydeko found the issue is caused by a couple of code lines in send_core.php ==== START QUOTE ===== On line 1034 and 1040 are: //value="'.htmlentities(iconv('ISO-8859-1','UTF-8',$subject),ENT_QUOTES,'UTF-8').'" size=40></td></tr> value="'.htmlentities(iconv('ISO-8859-1','UTF-8',$from),ENT_QUOTES,'UTF-8').'" size=40></td></tr> I am not sure why 1034 is commented out, but if you replace 1034 with the contents of 1023 without the comment, and replace 1040 with 1024 without the comment, the program works fine for me. So it looks like something is causing a problem in the "iconv('ISO-8859-1','UTF-8',$from)" bit of code. ==== START QUOTE ===== Source: http://forums.phplist.com/viewtopic.php?f=17&t=24501#p61969 [^] |
The issue occurred on a system with $strCharSet=ISO-8859-1 and the following database settings: character_set_client: utf8 character_set_connection: utf8 character_set_database: latin1 character_set_filesystem: binary character_set_results: utf8 character_set_server: latin1 character_set_system: utf8 I couldn't reproduce this issue on my system which is fully configured for UTF-8 (see notes 0050565 and 0050579 of mantis issue 1644). SOME REMARKS: It seems to me the code changes made to fix issue http://mantis.phplist.com/view.php?id=15241 [^] have introduced the current issue. It is unclear to me why line 1034 has been disabled (commented), nor can I check on my system whether just uncommenting line 1034 would solve this issue. I wonder whether the use of iconv -as in: htmlentities(iconv('ISO-8859-1','UTF-8',$subject) - wouldn't result in more trouble than it solves, for instance if someone would be using another admin page encoding than ISO-8859-1, like ISO-8859-7 which is used in greec.inc. I also wonder whether hardcoding charsets is the best way to go. Please see my notes on this topic in http://mantis.phplist.com/view.php?id=1644 [^] |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15286 | Bounce Management | minor | always | 12-05-09 17:01 | 30-08-09 13:09 | nickyoung | normal | new | none | none | 2.10.10 | open | 0 | delete bounce operation doesn't work from 'view a bounce' page |
I just upgraded to 2.10.10. Now when I go to the "View a bounce" page from the admin and then with "Delete this bounce and go to the next" checked, hit the "Do the above" button, the page refreshes and the bounce doesn't appear to be deleted. |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15285 | Subscribe Process | minor | always | 12-05-09 01:27 | 28-08-09 05:44 | h2b2 | normal | new | none | none | 2.10.10 | open | 0 | v2.10.10: Attributes' order of listing on subscribe page cannot be saved | When changing the order of listing on the 'edit a subscribe page' (lists/admin/?page=spageedit&id=1) by entering numbers starting from 0 in the attribute's "Order of Listing:" fields, and clicking on either the 'Save changes' or 'Save and activate' buttons, the entered values blank out and nothing is changed on the subscribe page. |
Issue reported by spidersilk: http://forums.phplist.com/viewtopic.php?p=61874#p61874 [^] Confirmed on my system: phplist 2.10.9 Linux/Apache PHP 5.2.3 MySQL 4.1.12 |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15284 | User Management | minor | always | 12-05-09 00:37 | 06-10-09 16:07 | h2b2 | normal | new | none | none | 2.10.10 | open | 0 | v2.10.10: Delete attribute and Merge attribute feature does not seem to be working |
On the 'configure attributes' page (lists/admin/?page=attributes), deleting or merging attributes has no effect. . |
Issue reported by postmanpat: http://forums.phplist.com/viewtopic.php?f=17&t=24502&start=0 [^] Confirmed on my system: phplist 2.10.9 Linux/Apache PHP 5.2.3 MySQL 4.1.12 |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15283 | Message Send Process | minor | always | 11-05-09 16:18 | 16-11-09 09:32 | h2b2 | normal | assigned | none | none | 2.10.10 | open | 0 | v2.10.10: Date criteria does not work |
Using Date attributes as criteria does not seem to work anymore. This issue is reported by Aidan: ==== START QUOTE ==== On the Criteria tab, I try to add a criterion based on the date attribute - I choose the date attribute from the dropdown and enter the date in the format specified, dd-mm-yyyy, and click 'Add Criterion'. But it replaces the date I entered with 0. I get the message 'Adding Submission Date isbefore 0' and it adds a line to the 'Existing Criteria' table which also has '0' in the values column. Running the Calculate function shows that this criterion has no effect on the number of results returned. === END QUOTE === Source: http://forums.phplist.com/viewtopic.php?f=17&t=24512#p61910 [^] Issue confirmed on my installation too. |
Had a quick look at the code and it seems to me that the use of the cleanCommaList function in send_core.php causes problems when Date type attibutes are used as criteria. This is a possible fix which seems to work, though I haven't tested it thoroughly. It basically reverts two code lines back to what it was in the previous version: In lists/admin/send_core.php 1. change line 495 from this: $values = cleanCommaList($values); to this: // $values = cleanCommaList($values); 2. change line 859 from this: $where_clause .= cleanCommaList($crit_data["values"]) . ") )"; to this: $where_clause .= $crit_data["values"] . ") )"; NOTE: I think the cleanCommaList function was applied to fix this issue: http://mantis.phplist.com/view.php?id=15211 [^] Removing cleanCommaList did not produce any query errors, so the workaround solution suggested by davideg in 15211 wasn't needed. |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15282 | User Management | minor | always | 11-05-09 15:58 | 07-08-09 19:46 | h2b2 | normal | resolved | none | none | 2.10.10 | fixed | 0 | v2.10.10: 'View list members' does only allow viewing the first page of 50 users on the list |
When viewing list members (e.g. lists/admin/?page=members&id=1) it is only possible to view the first page of 50 list members. It is not possible to view the remainder of the list members, as the navigation links (<,>,<<,>>) do not seem to work. For instance, ">" (http://my_domain.com/lists/admin/?page=members&start=50&id=1) [^] does not load the next 50 list members. |
This issue is reported by several forum users (system info included in their posts). Related to this forum thread: http://forums.phplist.com/viewtopic.php?f=17&t=24514&start=0 [^] |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15281 | Installation | block | always | 10-05-09 06:13 | 14-05-09 21:44 | nithael | normal | resolved | none | none | FutureDevelopments | no change required | 0 | Database error 1146 while doing query Table DBName.phplist_subscribepage doesn't exist |
The line error says: Database error 1146 while doing query Table 'DBName.phplist_subscribepage' doesn't exist Actually, I'm using the 2.10.10 version, since it's the last stable according to the website. I'm getting 3 of these line errors, and I'll paste here what's the lines that I can see here (of course, I'll replace the DBName text!): Database error 1146 while doing query Table '**DBName**.phplist_subscribepage' doesn't exist Erro Fatal: Debugging not configured properly Database error 1146 while doing query Table '**DBName**.phplist_subscribepage_data' doesn't exist Erro Fatal: Debugging not configured properly Database error 1146 while doing query Table '**DBName**.phplist_subscribepage' doesn't exist Erro Fatal: Debugging not configured properly Unsubscribe from our Newsletters Powered by PHPlist2.10.10, © tincan ltd -- BTW: "Erro" means Error.. ;) It's only in portuguese... |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15280 | All Other | text | have not tried | 07-05-09 19:52 | 14-05-09 21:44 | h2b2 | normal | resolved | none | none | fixed | 0 | V2.10.10 seems to be missing from the Mantis "Product version" drop down list | Could you please add it? Thx |
| |||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15279 | Subscribe Process | major | always | 06-05-09 21:10 | 07-08-09 20:26 | highcontrast | normal | assigned | none | none | 2.10.9 | open | 0 | 3 or more Radio Inputs Required causes endless loop on submit |
If a subscribe page has 3 or more (I think it's 3, may be +/- 1) radio inputs that are required it causes and endless loop. This can be a serious problem in FireFox if you click "continue" and check "don't ask me again". This locks up FireFox. This has been verified in FireFox 3.0.10 on Windows XP, though I'm guessing this would appear in any browser. The problem seems to be one of variable scope caused by using the same variable, i, to control a number of loops. Specifically it is a problem with the checkGroup function in index.php. Using a different variable name instead of i in this function fixes the problem. For example: function checkGroup(name,value) { option = -1; for (checkGroupi=0;checkGroupi<document.subscribeform.elements[name].length;checkGroupi++) { if (document.subscribeform.elements[name][checkGroupi].checked) { option = checkGroupi; } } if (option == -1) { alert ("'.$GLOBALS["strPleaseEnter"].' "+value); return false; } return true; } Hope this helps. |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15278 | HTML Email Support | minor | always | 06-05-09 09:36 | 14-05-09 21:46 | brosulo | normal | resolved | none | none | 2.10.9 | fixed | 0 | Embed images in html email fails if images were putted into subfoder | Allow admin to embed images in html emails, permitting also to put them in subfolders. I solved this issue, solution here: http://gabo.homelinux.com/en/2009/04/phplist-embedding-images/ [^] | |||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15277 | Attachments | major | always | 05-05-09 10:41 | 05-05-09 10:41 | lwc | normal | new | none | none | FutureDevelopments | open | 0 | Some attachments (e.g. PDF) need be inline in dl.php |
Please accept the following patch in dl.php - otherwise PDF files are not clickable: list($fname,$ext) = explode(".",basename($data[2])); // custom code - start $undirect_mime_types = array('pdf'); $the_mime_types = explode("/", $data[1]); if ($the_mime_types[0] == 'application' && in_array($the_mime_types[1], $undirect_mime_types)) header ('Content-Disposition: inline; filename="'.basename($data[2]).'"'); else // custom code - end header ('Content-Disposition: attachment; filename="'.basename($data[2]).'"'); |
Not doing it stop PDF usage for sites that send plaintext messages and/or use the NewsletterArchive add-on. | ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15276 | Interface - Backend | minor | always | 04-05-09 14:11 | 04-05-09 14:11 | michiel | normal | resolved | none | none | 2.10.9 | fixed | 0 | re-enable image upload in fckeditor |
in 2.10.9 or possibly even before, when an upgrade was made to the fckeditor, the functionality to upload images was lost. |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15275 | HTML Email Support | major | always | 04-05-09 12:11 | 04-05-09 14:03 | mcfang | normal | resolved | none | none | 2.10.9 | fixed | 0 | stripHTML is too greedy when matching links |
If your HTML has any A tags that do not have a HREF attribute then entire blocks of text are deleted. A tags are most commonly used without HREF when providing anchor links within the content. eg: <a name="top"></a> The problem is caused by a greedy match in function stripHTML (sendemaillib.php:1134) $text = preg_replace("/<a.*href=[\"\'](.*)[\"\'][^>]*>(.*)<\/a>/Umis","[URLTEXT]\\2[ENDURLTEXT][LINK]\\1[ENDLINK]\n",$text); If we replace the first greedy match with a saner match it will not be a problem: $text = preg_replace("/<a[^>]*href=[\"\'](.*)[\"\'][^>]*>(.*)<\/a>/Umis","[URLTEXT]\\2[ENDURLTEXT][LINK]\\1[ENDLINK]\n",$text); |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15274 | Subscribe Process | minor | always | 03-05-09 20:55 | 26-05-09 12:51 | JuB | normal | new | none | none | FutureDevelopments | open | 0 | Unsubscribe from inactive/private lists |
I have a combination of public lists (active with a subscribe page), private lists (deactivated, no subscribe page), and semi-private lists (active, but with own subscribe page). One user may be on any number of these lists. The problem is that, in order for a user to unsubscribe from specific lists via the preferences page, the lists must be 1) active 2) listed on the default subscribe page. These are not desirable, because I don't want to advertise the private and semi-private lists to anyone who is not already on these lists, either on a subscribe page or their preferences page. I've found this patch on internet and it works great for me, I suggest that this is the way it should be in a standard version. The patcher says: QUOTE: "After giving it some thought, I determined that I needed to modify the code to display ALL lists a user is subscribed to on their preferences page, in addition to the default behavior of showing active lists enabled for that subscribe page. Once they unsubscribe from a list not enabled for that page, it disappears as expected. I have provided my modifications as a patch below. I'm not too familiar with the phplist code, but it seems to work as expected. Is there a better way to solve this problem, or can a solution like this be added to a future release? Perhaps as a configuration option ("Show all lists user is subscribed to on preferences page.")" // END OF QUOTE I'm attaching his patch - it works for me too. |
suscribelib2.php_patch.txt (3 KB) 03-05-09 20:55 | ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15273 | Installation | major | always | 03-05-09 20:03 | 04-05-09 15:14 | astro | normal | new | none | none | 2.10.9 | open | 0 | Check for safe_mode wrong |
At 8 occurrences in the code, phplist checks for the PHP Safe Mode like this: "if (ini_get("safe_mode"))". But ini_get("safe_mode") returns "off" which is resolved to true. Thus, phplist always thinks it would run in Safe Mode. My environment: PHP Version 5.2.9 System Linux server116 2.6.27-gentoo-r8 #3 SMP Mon Mar 23 02:30:09 CET 2009 i686 Apache Version Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8k PHP/5.2.9 |
As a quick fix, I changed all ini_get("safe_mode") to "false" as I lost patience and wanted to keep the change as simple as possible. Generally, this should be changed to "if (ini_get("safe_mode") != "off")" or similar. I hope that this has not been reported before. I tried my best with the search engine but didn't find anything which is strange as all users of this release should suffer from this bug. |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15271 | Message Send Process | major | always | 30-04-09 19:36 | 03-08-09 14:25 | seanfulton | normal | new | none | none | open | 0 | Sending URL with [URL:http://someplace.com] [^] failes when run from command line |
When sending a web page using [URL:http://www.someplace.com], [^] sending works fine when processed from the web admin interface. In other words, when you hit process queue from the admin interface, PHPList will fetch the appropriate page and send it in the body of the message. When run from the command line, either by hand or by cron, it mangles the URL and just sends the URL, which appears to recipients as follows: [URL:www.somplace.com] and does not fetch the appropriate web page. Subscribers only sees the line above. |
This happens with both 2.10.7 and 2.11.3 versions latest PEAR and PHP 4.3. sean |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15270 | All Other | minor | always | 27-04-09 15:50 | 04-05-09 13:41 | CS2 | normal | new | none | none | FutureDevelopments | open | 0 | [feature-request] List-Unsubscribe header |
The List-Unsubscribe header includes either an email address or web page that can be used for unsubscribing. It allows mail clients that support it the ability to include an "unsubscribe" link or button. Hotmail currently supports this feature and gmail list having this header in their suggested guidelines for increasing delivery rates to gmail. For more information on the header, see this page: http://www.list-unsubscribe.com/ [^] Note, this is not intended as a replacement for the [UNSUBSCRIBE] placeholder, but as a useful counterpart. |
I have modified the class.phplistmailer.php file to include the header with this code: $url = getConfig("unsubscribeurl");$sep = ereg('\?',$url)?'&':'?'; $req = Sql_Fetch_Row_Query(sprintf("SELECT uniqid FROM %s WHERE email = '%s'", $GLOBALS["tables"]["user"],$email)); $hash = $req[0]; $unsubscribeurl = sprintf('%s%suid=%s',$url,$sep,$hash); $this->addCustomHeader("List-Unsubscribe: $unsubscribeurl"); |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15269 | All Other | minor | always | 27-04-09 12:30 | 04-05-09 13:46 | bencio | normal | resolved | none | none | no change required | 0 | colud not login to website demo |
User and password not working for me. Any other one with same problem? |
| |||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15268 | Interface - Frontend | major | always | 25-04-09 17:39 | 25-04-09 18:20 | calebnew | normal | new | none | none | 2.10.9 | open | 0 | Forward link does not redirect |
When sending a forward using the link in the footer, after sending two things happen: 1) A blank page with no confirmation that the forward has been sent 2) The forward does not arrive to the address it has been forwarded to |
Tried in chrome and safari |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15267 | Authentication System | major | always | 25-04-09 00:42 | 27-04-09 12:18 | chumparama | normal | assigned | none | none | FutureDevelopments | open | 0 | can't sign up for forums |
You can't sign up for the forums to help or ask for help at phplist.com I've tried multiple PCs and browsers. When you submit your info, it hangs and you end up with a blank page in your browser. |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15266 | Subscribe Process | feature | have not tried | 24-04-09 13:50 | 27-04-09 12:20 | Hijinx | normal | new | none | none | 2.10.9 | open | 0 | Send copy of subscribe form to email address |
This is probably a forum question but the forum registration fails internal server error 500. Issue is that once a person subscribes to a list i would like that info sent to phplist and a copy sent to a specific email address for that specific list. |
Scenario: We have 4 lists and 4 admins each with their own email address. When a person signs up to "list A", they should be subscribes to the list and the info they entered for that list should be emailed to "admin A". Using custom subscription pages (1 per list). |
||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15265 | Configuration | tweak | have not tried | 24-04-09 08:14 | 24-04-09 08:14 | throwingshapes | normal | new | none | none | 2.10.9 | open | 0 | Cant Change anything in configuration |
Hello, i have recently installed the phplist and finally managed to get it working after following the error fix for Error 500, when setting my list up i have followed the list of thing i need to do for the list to be complete, when i get to attributries and list and try to create new ones it doesnt work i type my information in then press add new or save changes and it take me to the front page and has not changed anything or added anything also i notice when trying to edit header html code etc i cant do that either. Any ideas? Thanks in advance |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15264 | Bounce Management | major | always | 23-04-09 09:14 | 15-06-09 13:14 | lwc | normal | new | none | none | FutureDevelopments | open | 0 | The phplist_bounce address shouldn't accept attachments |
The phplist_bounce should delete any incoming attachments and accept only text. Many servers also bounce back senders' attachments. It also happens that large attachments cause more bounces (due to over quota). So imagine what happens if you send large attachments and gets lots of bounces. The phplist_bounce address should deal with it somehow. |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15263 | Interface - Backend | minor | always | 22-04-09 18:51 | 22-04-09 18:51 | CS2 | normal | new | none | none | 2.10.9 | open | 0 | Interface issues when admin access to import pages is restricted |
This issue also exists in previous versions of PHPlist, going back to at least version 2.10.5. If you allow admins access to some import methods, but not all, the import.php (located in lists/admin/info/en) has the following display issues: 1) It will still show the descriptions for the import options the admin does not have access to. 2) The link text to the specific import method does not include the trailing period, resulting in an extra period preceding the description for import options the admin does not have access to. 3) The text above the import options says there are four ways to import users. |
As it stands now, this page is more or less hard-coded. Instead, I propose the information for each import page be loaded into an array, with an access check for each one, so that only the import pages the admin has access to will be displayed on the page. I've attached a patched version of import.php that accomplishes this. | import.php (2 KB) 22-04-09 18:51 | |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15262 | Bounce Management | trivial | have not tried | 22-04-09 11:54 | 22-04-09 11:54 | lwc | normal | new | none | none | 2.10.7 | open | 0 | Add user links in the "view a bounce" page |
Although the "list bounces" page does have user links, the specific "view a bounce" pages do not. It's really needed if one works with the "Delete this bounce and go to the next" option. Thanks! |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15261 | User Management | trivial | always | 22-04-09 11:43 | 11-08-09 10:54 | lwc | normal | new | none | none | FutureDevelopments | open | 0 | Silent blacklisting |
You have to realize there's a HUGE difference between a user blacklisting himself/herself and one who requests (read: demands) the admin to do it for him/her. The last thing in the world you or the latter type of user wants is yet ANTOHER message, which could bring you more troubles. A temporal solution is doing this in admin/lib.php, just while silent blacklisting: function sendMail (... /* if ($GLOBALS['usephpmailer']) { return sendMailPhpMailer($to,$subject,$message); } else { return sendMailOriginal($to,$subject,$message,$header,$parameters); } */ So please just do something like this: if (this is the actual user removing himself/herself) { if ($GLOBALS['usephpmailer']) { return sendMailPhpMailer($to,$subject,$message); } else { return sendMailOriginal($to,$subject,$message,$header,$parameters); } } |
Such blacklisting still takes lots of time for phplist to acknowledge it. You'd think the trouble comes from blacklist_gracetime, but this doesn't seem to make any difference whatsoever: // custom code - start $GLOBALS["blacklist_gracetime"] = 1; // custom code - end if (!$skipblacklistcheck && isBlackListed($to)) { ... http://forums.phplist.com/viewtopic.php?t=23805 [^] |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15260 | User Management | text | always | 22-04-09 11:30 | 26-05-09 12:56 | lwc | normal | new | none | none | FutureDevelopments | open | 0 | Blacklisting and unsubscribing should not be related |
I tested it and (if the admin manually returns a blacklisted user to lists) phplist does not send messages to blacklisted users in the lists the message is sent to. So why does blacklisting force a user to unsubscribe (from all lists)? I think it should be just like one's preferences where one can choose lists, except it should be phrased like "blacklist yourself in general AND remove yourself from the following lists:". |
http://forums.phplist.com/viewtopic.php?t=23804 [^] | ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15259 | Click Tracking | tweak | N/A | 21-04-09 04:17 | 23-04-09 18:39 | openmtl | normal | new | none | none | 2.10.9 | open | 0 | Patch to customise usertrack image. |
The usertrack image is a png file that is hardcoded as a 1x1 pixel (AKA webbug) in ut.php and the related HTML in admin/sendemaillib.php I felt this wasn't very nice and wanted a more obvious image and the ability to add alternate text to remind people to turn on images. |
Attached are two new files, ut.php and admin/sendemaillib.php To make this work add the following to your config file, # Set to UT_USE_CUSTOM_IMAGE 1 to bypass the default usertrack of a 1 px X 1 px image and use # your own image. The UT_IMAGE_CONTENTTYPE matches the UT_IMAGE_FILENAME which is the full path # to the filename (with its name) not a relative path. This can be located outside of the # web accessible folder. The UT_IMAGE_ALT is a suitable Alternate text. Use this when you want # to be clear about the hidden image with people who do not load images (you could say # "Use load images to see image" to remind them to do this. define('UT_USE_CUSTOM_IMAGE',0); define('UT_IMAGE_CONTENTTYPE','image/png'); define('UT_IMAGE_FILENAME','/full/path/to/image/filename'); define('UT_IMAGE_ALT','Please load images'); |
phplist-patch-ut-override.zip (15 KB) 21-04-09 04:17 |
| ||||||||||||||||||||||||||||||||||||||||||||||||||
| 15258 | Internationalization (l18n) | trivial | have not tried | 15-04-09 14:53 | 26-05-09 12:57 | paulogeyer | normal | resolved | none | none | 2.10.9 | duplicate | 1644 | email body being sended with UTF-8 encoding |
some subscribers of our newsletters were reporting some charset problems, then i've searched for the cause of the problem and appears to be caused by some html entity conversion in the sendemaillib.php file $text = html_entity_decode ( $text , ENT_QUOTES , 'UTF-8' ); it should be my system charset instead of UTF-8, i've changed to ISO-8859-1 here, but would be a trivial fix to use the system charset variable there. |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15257 | Plugin API | minor | always | 08-04-09 13:48 | 08-04-09 13:48 | CS2 | normal | new | none | none | 2.10.9 | open | 0 | Incorrect link text used in sidebar menu |
In the admin/connect.php page where it creates the sidebar menu at line 472 it uses this code to create the plugin link: if (sizeof($GLOBALS["plugins"])) { $html .= $spb . "<hr/>" . $spe; foreach ($GLOBALS["plugins"] as $pluginName => $plugin) { $html .= $spb . PageLink2("main&pi=$pluginName", $pluginName) . $spe; } } This works fine for the link, but the link text will always be the plugin name instead of the plugin's name property (e.g. plugin name = "helloworld" the name property = "Hello World"). |
Here is my corrected code: if (sizeof($GLOBALS["plugins"])) { $html .= $spb . "<hr/>" . $spe; foreach ($GLOBALS["plugins"] as $pluginName => $plugin) { $pluginDesc = $plugin->name; $html .= $spb . PageLink2("main&pi=$pluginName", $pluginDesc) . $spe; } } |
||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15256 | Plugin API | major | always | 08-04-09 13:45 | 08-04-09 13:45 | CS2 | normal | new | none | none | 2.10.9 | open | 0 | Plugin links on 'main' page are broken |
The code in home.php that creates the plugin links does not function correctly. This is the code being used (at line 275): $ls = new WebblerListing($GLOBALS['I18N']->get('Plugins')); if (sizeof($GLOBALS["plugins"])) { foreach ($GLOBALS["plugins"] as $pluginName => $plugin) { $menu = $plugin->adminmenu(); if (is_array($menu)) { foreach ($menu as $page => $desc) { $ls->addElement($desc,PageUrl2("$page&pi=$pluginName")); # $ls->addColumn($page," ",$desc); } } } } print $ls->display(); It is incorrectly looping through the plugin's adminmenu array, which is used to allow multiple pages within a plugin. It also also using "$page&pi=$pluginName" which results in a link to something like "helloworld?pi=helloworld", when the page name should always be "main". |
Here is the code I replaced the above with that works better: $ls = new WebblerListing($GLOBALS['I18N']->get('Plugins')); if (sizeof($GLOBALS["plugins"])) { foreach ($GLOBALS["plugins"] as $pluginName => $plugin) { $desc = $plugin->name; $ls->addElement($desc,PageUrl2("main&pi=$pluginName")); } } print $ls->display(); |
||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15255 | All Other | minor | always | 08-04-09 01:38 | 04-05-09 13:51 | OGJuiceLoc | normal | resolved | none | none | 2.10.9 | fixed | 0 | A new version of phplist is available - links are broken |
When this message pops up, A new version of phplist is available! The new version may have fixed security issues, so it is recommended to upgrade as soon as possible Your version: 2.10.8 Latest version: 2.10.9 LINKS ARE BROKEN FOR THESE 2 BELOW: View what has changed Download |
"View what has changed" goes to http://www.phplist.com/files/changelog [^] last used on 2007-09-03 14:28. Link should go to http://mantis.phplist.com/changelog_page.php [^] "Download" goes to http://www.phplist.com/files/phplist-2.10.9.tgz [^] for example which does not exist. "Download" should go to the more general page http://www.phplist.com/download [^] where the user can choose which type to download. Lastly, I noted for myself there should be a link to /lists/admin/?page=upgrade but now I don't see that link anywhere even after I've changed the phplist_config field of "updatelastcheck" to an old enough date to show the original text in the Description above. |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15254 | Message Send Process | minor | have not tried | 05-04-09 20:26 | 05-04-09 20:43 | h2b2 | normal | new | none | none | 2.10.8 | open | 0 | Issue with link conversion for click tracking |
Link conversion for clicktracking in v2.10.8 generates broken links under specific conditions by adding a trailing "%3D" (an equivalent for "=") to the link id. For instance: /lists/lt.php?id=f0wESAJQAQtFBwoBBAM%3D System info: phplist - v2.10.8 (with magic quotes off) Apache - 2.2.10 cPanel - 11.23.6-STABLE Curl - 7.12.1 MySQL - 5.0.51a phpMyAdmin - 2.11.9.1 Python - 2.4.3 Perl - 5.8.8 PHP - 5.2.6 ionCube Loader - 3.1.32 Zend Optimizer - 3.3.3 Ruby Rails - 1.8.5 OpenSSL - 0.9.8b The issue was reported on this forum thread: http://forums.phplist.com/viewtopic.php?p=58171#58171 [^] http://domain.com/lists/lt.php?id=f0wESAJQAQtFBwoBBAM%3D [^] |
Seems related to http://mantis.phplist.com/view.php?id=8980 [^] Have filed a new report since issue 8980 apparently doesn't allow re-opening the issue to post feedback notes. - |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15253 | User Management | minor | always | 03-04-09 17:48 | 03-04-09 17:48 | CS2 | normal | new | none | none | 2.10.9 | open | 0 | Sub-Admins able to edit values for checkboxgroup, select and radio attributes even if 'editattributes' is set to 'none' |
If you create a sub-admin account and restrict the 'editattributes' task to 'none' but allow access to the 'manage users' page, it will still list checkboxgroup, select and radio attributes and allow the admin to edit the available values. This is caused by the admins/usermgt.php page passing the page name along with the attribute ID to the page2link function as the $name attribute rather than splitting it into $name and $url. This is causing the function to do an access check on a non-existing task (e.g. 'editattributes&id=1'). This bug has been in affect since at least 2.10.5. |
This can be corrected by replacing line 19: $link = PageLink2($page,$desc); With this: $temp = strpos($page,"&"); if ($temp) { $url = substr($page,$temp-1,strlen($page)); $page = substr($page,0,$temp); $link = PageLink2($page,$desc,$url); } else { $link = PageLink2($page,$desc); } |
||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15252 | Click Tracking | minor | N/A | 28-03-09 15:37 | 26-05-09 12:58 | raeesah_v | normal | new | none | none | FutureDevelopments | open | 0 | More extensive click tracking |
is there a way to have more extensive click stats? at the moment php list only shows the first and latest click time.... one of my users clicked the link in my email 4 times is there a way to find out the time of the other 2 clicks that happened between the first and last? thanks for your help |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15251 | Configuration | major | always | 26-03-09 13:44 | 04-05-09 13:53 | mrakar | normal | feedback | none | none | 2.10.9 | open | 0 | return-path and "delivered to" missing from my message header |
I am trying to configure phplist and while it works correctly and sends email it seems that message header is missing vital information I am misssing return-path and delivered to fields; and because of this some spam filters are flaging my emails as spam I am running phplist on latest DV 3.5 from mediatemple (interestingly, it runs correctly on another DV server I also own) can someone help me at least to see what and where to look? |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15250 | RSS | minor | have not tried | 25-03-09 03:49 | 26-05-09 12:39 | h2b2 | normal | resolved | none | none | 2.10.9 | duplicate | 1644 | RSS feeds encoded in ISO-8859-1 do not display correctly in UTF-8 encoded messages |
A number of users mentioned that special characters contained in ISO-8859-1 encoded RSS feeds do not display correctly in the UTF-8 encoded messages phpList generates. Reference: http://forums.phplist.com/viewtopic.php?p=60601#60601 [^] http://forums.phplist.com/viewtopic.php?p=47283#47283 [^] |
Possibly related to http://mantis.phplist.com/view.php?id=1644 [^] |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15249 | Documentation - Subscribe Usage | minor | have not tried | 23-03-09 15:32 | 26-05-09 01:16 | michiel | normal | resolved | none | none | fixed | 0 | possible FAQ entry |
0015238 if a subscribe page has one list then phpList will hide the checkbox for it and automatically use that list can you check whetehr that's a FAQ entry and add it if it isn't ? Might help some more people |
| |||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15248 | User Management | minor | always | 22-03-09 12:20 | 24-03-09 10:28 | scottg | normal | new | none | none | 2.10.9 | open | 0 | DB error 1146 while doing query Table 'groups' doesn't exist |
Recently installed PHPList 2.10.9 and all seemed to work fine until I enabled user passwords in config.php by changing ASKFORPASSWORD,0 to ASKFORPASSWORD,1. Now, after the user enters their password, they get the error message: Database error 1146 while doing query Table '*_phplist.groups' doesn't exist I would manually create the table but I don't know what variables and parameters of the table should be. I don't know where that "groups" table comes from. I see that there are others with the error referencing "user_group" but not "groups". I don't think I have any custom mods installed. I did a typical installation and modified some of the variables in config.php as instructed in the documentation. I ran dbcheck and all was good (checked). The table "groups" was not listed there, not part of dbcheck. |
Linux 2.6.27.6-grsec PHP 5.2.8 MySQL 5.0.67 |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15247 | Message Send Process | minor | unable to reproduce | 20-03-09 20:30 | 23-03-09 14:55 | h2b2 | normal | new | none | none | 2.10.7 | open | 0 | Same message sent multiple times to same users |
A number of phplist users reported that phplist sends messages multiple times to the same users, even though the repetition feature was disabled. Users also reported that old messages where resent to the same users. This issue was reported for different phplist version, ranging from v2.10.5 to 2.10.7: http://forums.phplist.com/viewtopic.php?p=58346#58346 [^] http://forums.phplist.com/viewtopic.php?p=58358#58358 [^] http://forums.phplist.com/viewtopic.php?p=57941#57941 [^] http://forums.phplist.com/viewtopic.php?p=33126#33126 [^] http://forums.phplist.com/viewtopic.php?p=33974#33974 [^] The most coherent report is from karlmikaze (http://forums.phplist.com/viewtopic.php?p=60803#60803) [^] and occurred after a phplist upgrade combined with a MySQL upgrade. He notes the following: "check to make sure that the new DB contains right values in the "sent" column! This was not the case during our first try, the fields were "NULL" - so the system sent them out over again." |
This issue may be hard to reproduce since most reports do not provide enough info to get a clear picture. Still, considering its importance and its continuous re-occurrence every once in a while, I think it might warrant a closer look by the development team. karlmikaze's suggestion that something may go wrong during upgrades of the database tables seems to be the best lead for now. It might therefore be useful to specifically check the usermessage table's status field (and other relevant database table fields) for valid values during the upgrade process, and include this added functionality in the dbcheck function. |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15246 | Interface - Backend | minor | have not tried | 20-03-09 15:33 | 20-03-09 15:33 | ignacio | normal | new | none | none | open | 0 | Listbounces should report what's doing |
When you get to <server>/list/admin/?page=listbounces you get the whole history of bounces, but the detail only shows the last 6 months. (According to what the code listbounces.php code currently shows). For example tincan's phplist currently reports 765 bounces for the list "phpList Announcements": http://tincan.co.uk/lists/admin/?page=listbounces [^] But if you go to the detail of bounces for that list: http://tincan.co.uk/lists/admin/?page=listbounces&id=17 [^] it comes empty because there were no bounces for that list in the past 6 months. We need to add a comment in the detail of bounces page that reports this 6 month limit to the results. Something like: "Showing last 6 months". |
||||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15245 | HTML Email Support | minor | always | 20-03-09 08:43 | 26-05-09 12:33 | h2b2 | normal | resolved | none | none | 2.10.9 | duplicate | 1644 | Message footer does not display special characters, like é ó ö ü etc. |
A fair number of users reported that special characters, like é, ö, ü, will not display in the message footer: http://forums.phplist.com/viewtopic.php?p=60807#60807 [^] http://forums.phplist.com/viewtopic.php?p=27398#27398 [^] http://forums.phplist.com/viewtopic.php?p=38355#38355 [^] etc. I ran a test with v2.10.9 and can confirm this issue, both for html and text messages that I received. This issue also appears to have occurred in previous versions of phplist. |
System details used for testing Server info: phplist 2.10.9 Linux/Apache PHP 5.2.3 MySQL 4.1.12 - with database encoding set to: utf8_unicode_ci Phplist configuration Configuration page: - Charset for HTML messages: UTF-8 - Charset for Text messages: UTF-8 config.php: - $language_module = "english.inc"; - with $strCharSet set to iso-8859-1 - with $strCharSet set to utf-8 - define("HTMLEMAIL_ENCODING","quoted-printable"); - define("TEXTEMAIL_ENCODING",'7bit'); |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15244 | Subscriber Import | major | always | 19-03-09 09:49 | 23-03-09 15:14 | steveh | normal | resolved | none | none | 2.10.9 | fixed | 0 | Potential for SQL injection in import |
If records that are quote delimted are imported then the sql in users fails with syntax errors. |
Create a file:- "steve@xyz.com" "fred@bert.com" Import this file, then go to the user management page, you'll see sql syntax errors. |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15243 | All Other | minor | always | 18-03-09 20:42 | 20-03-09 16:15 | hernan | normal | assigned | none | none | open | 0 | phplist forums "forgot password" feature doesn't work | Like the title says, it doesn't work cos the recovery email never arrives... |
| |||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15242 | Browser Issues | major | always | 13-03-09 11:52 | 27-03-09 18:10 | richarmstrong | low | feedback | none | none | 2.10.9 | suspended | 0 | Site forum has banned me form site & Gmail doesn't recieve mail from phplist |
when trying to access http://forums.phplist.com/ [^] i get this message in the window: You have been banned from this forum. Please contact the webmaster or board administrator for more information. no messages get through to my gmail account. - i don't know why that would be, as a lot of people use gmail. |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15241 | Message Management | major | always | 09-03-09 08:43 | 26-03-09 17:25 | enes | normal | resolved | none | none | 2.10.9 | fixed | 0 | Subject will empty when we edit the message |
hello, I've create a message, define a subject then save it. when I click the message for editing the subject will be empty. so I can't send the message if I try to send the message by editing window it sends with blank subject.. so I try to send it on the wiev secreen.. regards |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15240 | Subscribe Process | minor | always | 28-02-09 17:07 | 16-03-09 19:53 | h2b2 | normal | resolved | none | none | 2.10.8 | fixed | 0 | v2.10.9 - Second subscribe window appearing when re-subscribing a previously unsubscribed user |
This issue was reported by woolef in this forum post: ====Start quote===== I get the "second window on form submission" problem (using 2.10.9), but I found out the following; * a new email address (ie. one that phplist doesn't know about) works fine. * an existing email address (ie. one that is subscribed to a list in my phplist) works fine and you just get a 'thanks for subscribing' message. * an email address in your db that has been marked as blacklisted will get the second window error. * a deleted email address in your db that was marked as blacklisted before deletion will just get added back to your db with the same second window error ====End quote==== Source: http://forums.phplist.com/viewtopic.php?p=59971#59971 [^] |
The issue described by woolef ("an email address in your db that has been marked as blacklisted will get the second window error"), can be reproduced on my v2.10.9 install. System info: phplist 2.10.9 Linux/Apache PHP 5.2.3 MySQL 4.1.12 |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15239 | Click Tracking | minor | have not tried | 26-02-09 22:14 | 10-03-09 21:21 | seanfulton | normal | feedback | none | none | 2.11.3 | open | 0 | Links are not getting re-written correctly (mangled actually). |
We are attempting to send the following page: http://www.cnybj.com/index.php?id=123 [^] using: [URL:http://www.cnybj.com/index.php?id=123] [^] with clicktrack on. The URLS in the right-hand box are re-written properly. The URLS in the left, the stories, are getting re-written incorrectly: http://www.cnybj.com/index.php?id=394&tx_ttnews[tt_news]=9853&tx_ttnews[backPid]=167&cHash=f0ee5812c6 [^] is being re-written as: http://www.cnybj.com/index.php?id=394&tx_ttnews[tt_news]=9853&tx_ttnews=167&cHash=f0ee5812c6 [^] The missing part is the part [backPid]. What is confusing me though is that the URLS are not being re-written as lt.php? like the rest. Any ideas? sean |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15238 | Interface - Frontend | major | always | 22-02-09 07:17 | 23-03-09 15:29 | dlynes | normal | resolved | none | none | 2.10.8 | no change required | 0 | Subscribe to Selected Newsletters button page |
On this page (http://newsletterurl.com/lists/?p=subscribe&id=1), [^] there are all the fields to sign up for a newsletter. However, at the bottom of the page, is a button entitled 'Subscribe to Selected Newsletters', and at the top of the page is the text, 'Subscribe to one or more of our newsletters using the form below'. Despite all this, there are no newsletters listed. I've tried adding newsletters so that I've got more than one newsletter, and that didn't seem to fix the problem. Is there something additional I need to do that I didn't see in the installation instructions, or is this actually a problem in the software? Thank you. |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15237 | Subscribe Process | minor | always | 18-02-09 18:52 | 26-05-09 13:02 | rk22 | normal | new | none | none | FutureDevelopments | open | 0 | phplist changes subscribe layout for user that subscribes in new list |
Hi all, and thanks for phplist. Great product. I have an issue concerning public pages layout in a multiple list configuration. In my newsletter it's a quite big problem for the "update user" workflow. That's what happens: 1. User subscribes List A from Layout A and confirm; All public pages for the user will correctly be the A kind. 2. The same user subscribes to the List B from Layout B. All public pages for the user are changed in Layout B. It might have sense (maybe don't if you think like me that the default layout must remain the first in which user subscribed). Anyway it is incorrect that when the user unsubscribes the B List (from the update page), the layout remains the B one. I suppose that the issue is linked to the to the "Which page was used to subscribe" field in users’ profiles, that is updated every-time users edit their datas. Is there any way to block the update of this field? I hope that my report could be useful (and well explained)... tnx |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15236 | Subscribe Process | trivial | always | 18-02-09 13:46 | 17-03-09 13:38 | lwc | normal | new | none | none | 2.11.2-RC1 | open | 0 | Support for defining a default for "htmlemail" |
There seems to be no way to define the default message format as HTML (i.e. have "htmlemail" as 1 by default), except by creating a whole manual subscribe form. I realize this would require a new field in the GUI as well as in the database. That's why an interim solution should be to go ahead and implement the already existing patch for 0015235 |
|||||||||||||||||||||||||||||||||||||||||||||||||||||
| 15235 | Subscribe Process | feature | always | 18-02-09 13:37 | 12-08-09 09:34 | lwc | normal | new | none | none | 2.11.2-RC1 | open | 0 | Accept more $_GET parameters in subscribelib2.php |
You already accept $_REQUEST['email'] and $_REQUEST['emailconfirm'] so there's no reason not accept defaults via $_GET parameters for the other two fields: 1) Allow ?p=subscribe&list[x]=signup function ListAvailableLists... if (isset($_POST['list'])) { $list = $_POST["list"]; // custom code - start } elseif (!isset($_POST["subscribe"]) && isset($_GET['list'])) { $list = $_GET["list"]; // custom code - end } else... 2) Allow ?p=subscribe&htmlemail=1 function ListAttributes... if (isset($_POST['htmlemail'])) { $htmlemail = $_POST["htmlemail"]; // custom code - start } elseif (!isset($_POST["subscribe"]) && isset($_GET['htmlemail'])) { $htmlemail = $_GET["htmlemail"]; // custom code - end } |
Note that you should NOT under any cirumstances "just" use $_REQUEST for "list" and "htmlemail" because it would turn them into required fields! That's why this request also fixes request 11011 |
| |||||||||||||||||||||||||||||||||||||||||||||||||||
| 15234 | Subscribe Process | major | always | 17-02-09 18:09 | 17-02-09 18:09 | judgej | normal | new | none | none | 2.10.8 | open | 0 | Mandatory drop-down lists do not show as mandatory (the label class is wrong) |
When a drop-down list is marked as mandatory on a custom subscription page, the label on the list does not show up in the 'mandatory' colours (i.e. red). I fixed this in the lists/admin/subscribelib2.php lines 806 and 807, just by commenting out those two lines: //$attr["required"] = $attributedata[$attr["id"]]["required"]; //$attr["default_value"] = $attributedata[$attr["id"]]["default_value"]; The $attributedata array passed into this function ListAttributes($attributes,$attributedata,...) appears *not* to be keyed by the attribute ID. Instead it is keyed (I think) by row number. It is passed in from another call in index.php, but I got a bit lost after that. I suspect those two lines may actually be lagacy anyway, as the same attribute data is reselected inside ListAttributes(), whi | |||||||||||||||||||||||||||||||||||||||||||||||||||||
![http://newsletter.dlrg-altbach.de/images/umfrage.gif"](http://newsletter.dlrg-altbach.de/images/umfrage.gif"){kind=link}