Upload datas in flexicontent via sql injection

More
14 years 11 months ago #791 by tramber91
hello

thanks again for this great component.

I know you work hardly on different new topics for this component.
I wanted to know if it could be possible to upload a large amount of datas via sql injection directly into the database (focus in only one categorie)?

thanks

Bertrand
En Toutes Lettres digital

Please Log in or Create an account to join the conversation.

More
14 years 11 months ago #796 by vistamedia
Hi,
Basically yes, but remember that the fields data are stored in a value table and thus they are not "flat". The process is more complicated and a simple sql insert is not enough. You must write a script to do this task (with jumi for example).
I'll release a dedicated import/export component begining of next year (but as this is typically a professionnal feature, the product will be commercial GPL licensed).
Now concerning the amount of records, what do you mean by large? More or less than 10.000?
Cheers,
Emmanuel.

FLEXIcontent lead developer.
www.vistamedia.fr web agency and custom development.
www.joomla.fr co-administrator.
Please no PM for support request, use the forum for that!!!

Please Log in or Create an account to join the conversation.

More
14 years 11 months ago #802 by tramber91
Hello Emmanuel,

Sorry for my english :?
a large amount for me is around 100 up to 200.
I never use jomi but my first seach in the web give me answer like "Vulnerability in Jumi ... "
When you said "not flat" you mean not in only one table if I only want to upload datas in one category ?

best regards

Bertrand

Bertrand
En Toutes Lettres digital

Please Log in or Create an account to join the conversation.

More
14 years 11 months ago #822 by vistamedia
It's ok for your english ;-) (Je suis français)
Now concerning the non-flat datas: you will have to populate multiple tables content, flexicontent_items_ext, flexicontent_cats_item_relations, flexicontent_fields_item_relations.
If you study the structure of this jos_flexicontent_fields_item_relations, you'll better understand the problem you'll have ;-)
Concerning Jumi, it's a very safe component but their server was hacked acouple of weeks ago and a hacker left a malicious script in the component package.
This issue has been solved and you can use it safely.
Cheers,
Emmanuel.

FLEXIcontent lead developer.
www.vistamedia.fr web agency and custom development.
www.joomla.fr co-administrator.
Please no PM for support request, use the forum for that!!!

Please Log in or Create an account to join the conversation.

More
14 years 11 months ago #1031 by tramber91
Bonjour Emmanuel

many Thanks
I take time to go through the database and to answer you

I have downloaded these 3 table datas

jos_flexicontent_cats_item_relations
category - item relationship
jos_flexicontent_fields_item_relations
Item values
jos_flexicontent_items_ext
Item values for search engine

I have added a new item in the sql file following sql export template
I have imported the new item, with old ones (Sql)

OK for the sql injection and datas in Sql database. I see my new item

But I don't see this new item in the list of Items (Flex admin)

I have missed a table ?

thanks

take care

Bertrand

Bertrand
En Toutes Lettres digital

Please Log in or Create an account to join the conversation.

More
14 years 11 months ago #1038 by tramber91
Hi

I understand
It is because the article was not created.
But if i create manualy the article, text and description of item are modified in flex following new article.

=> we have to create articles in jos_content at the same moment :?

another solutions?

thnks
Bertrand

Bertrand
En Toutes Lettres digital

Please Log in or Create an account to join the conversation.

Moderators: vistamediajoomlacornerggppdk
Time to create page: 0.912 seconds
Save
Cookies user preferences
We use cookies to ensure you to get the best experience on our website. If you decline the use of cookies, this website may not function as expected.
Accept all
Decline all
Essential
These cookies are needed to make the website work correctly. You can not disable them.
Display
Accept
Analytics
Tools used to analyze the data to measure the effectiveness of a website and to understand how it works.
Google Analytics
Accept
Decline