Alternadiv
Well-known member
Perfect. Thank you!Xon updated Alert Improvements by Xon with a new update entry:
2.7.2 - Maintenance update
Read the rest of this update entry...
Perfect. Thank you!Xon updated Alert Improvements by Xon with a new update entry:
2.7.2 - Maintenance update
Read the rest of this update entry...
- Fix unexpected extra queries when a user doesn't have unread alerts
- When pruning alerts; Reduce maximum batch size, and back-off by 1 second between prune attempts
Exception: Could not find class SV\AlertImprovements\XF\Entity\UserOption when attempting to extend XF\Entity\UserOption src/XF/Extension.php:174
Generated by: Unknown account May 14, 2020 at 9:33 AM
Stack trace
#0 src/XF/Mvc/Entity/Manager.php(53): XF\Extension->extendClass('XF\\Entity\\UserO...')
#1 src/XF/Mvc/Entity/Manager.php(721): XF\Mvc\Entity\Manager->getEntityClassName('XF:UserOption')
#2 src/XF/Repository/User.php(155): XF\Mvc\Entity\Manager->instantiateEntity('XF:UserOption', Array, Array)
#3 src/XF/Repository/User.php(152): XF\Repository\User->_hydrateGuestUserData(Array)
#4 src/XF/Repository/User.php(102): XF\Repository\User->_hydrateGuestUserData(Array)
#5 src/XF/Repository/User.php(31): XF\Repository\User->getGuestUser()
#6 src/XF/App.php(1773): XF\Repository\User->getVisitor(NULL, Array)
#7 src/XF/Pub/App.php(154): XF\App->getVisitorFromSession(Object(XF\Session\Session))
#8 src/XF/App.php(2180): XF\Pub\App->start(true)
#9 src/XF.php(391): XF\App->run()
#10 index.php(20): XF::runApp('XF\\Pub\\App')
#11 {main}
Request state
array(4) {
["url"] => string(1) "/"
["referrer"] => bool(false)
["_GET"] => array(0) {
}
["_POST"] => array(0) {
}
}
That file is in the redistributable zip;
addon-Xon-AlertImprovements-2.7.4.zip\upload\src\addons\SV\AlertImprovements\XF\Entity\UserOption.php
Can you check that php has read access to the files and the file ownership is correct?
@imno007 that isn't something which this add-on causes. It may be that you are seeing it more often due to more alerts being generated depending on settings, but there isn't much I can do about it
Seems like the forgery token check is missing there. Could even be XSS'd via iframe.Is there anything that can be done to prevent this
This is actually something of an XF bug, probably something to report in https://xenforo.com/community/forums/bugs/It seems like User Option to prevent marking as read when accessing /accounts/alerts page can by bypassed by tricking the user to access that page withskip_mark_read=0
.
Is there anything that can be done to prevent this?
Hmm, but XF by itself does not have an option to not mark alerts read when accessingThis is actually something of an XF bug, probably something to report in https://xenforo.com/community/forums/bugs/
/accounts/alerts
, this is only being added by your Add-on.skip_mark_read
flag and marking all alerts as reads if you touch /account/alerts
is actually a feature of XF./account/alerts?skip_mark_read=1
it will skip marking everything as read. This add-on just messes around the edges with it on the default value if the parameter is not present./account/alerts
via a [img] tag.This looks to be migrated in XF2.2; https://xenforo.com/community/threa...tent-read-without-actually-reading-it.176773/Hmm, but XF by itself does not have an option to not mark alerts read when accessing/accounts/alerts
, this is only being added by your Add-on.
So how could this be an XF bug if this feature (not marking alerts read when accessing the page) does not exist in XF?
We use essential cookies to make this site work, and optional cookies to enhance your experience.