PayZippy_Payment_Gateway - Version 0.1.1

Version Notes

Fixed security issues

Download this release

Release Info

Developer Cueblocks
Extension PayZippy_Payment_Gateway
Version 0.1.1
Comparing to
See all releases


Code changes from version 0.1.0 to 0.1.1

app/code/community/FlipKart/PayZippy/controllers/PaymentController.php CHANGED
@@ -34,13 +34,13 @@ class FlipKart_PayZippy_PaymentController extends Mage_Core_Controller_Front_Act
34
  Mage::log("Response:- ".print_r($response, true), Zend_Log::DEBUG, 'payzippy.log', true);
35
  }
36
  if (isset($response)) {
37
- $validated = $response['transaction_response_code'];
38
  $hash_recievd = $response['hash'];
39
  $payzippy_transid = $response['payzippy_transaction_id'];
40
  $payment_method = $response['payment_method'];
41
- $trans_status = $response['transaction_status'];
42
  $orderId = $response['merchant_transaction_id'];
43
- $message = $response['transaction_response_message'];
44
  $is_international = $response['is_international'];
45
  $fraud_action = $response['fraud_action'];
46
  $allow = array('SUCCESS','INITIATED','PENDING');
@@ -66,7 +66,7 @@ class FlipKart_PayZippy_PaymentController extends Mage_Core_Controller_Front_Act
66
  ));
67
  } else {
68
  // There is a problem in the response we got
69
- Mage::getSingleton('core/session')->addError($message);
70
  $this->cancelAction($comment);
71
  Mage_Core_Controller_Varien_Action::_redirect('checkout/onepage/failure', array(
72
  '_secure' => true
34
  Mage::log("Response:- ".print_r($response, true), Zend_Log::DEBUG, 'payzippy.log', true);
35
  }
36
  if (isset($response)) {
37
+ $validated = htmlentities($response['transaction_response_code']);
38
  $hash_recievd = $response['hash'];
39
  $payzippy_transid = $response['payzippy_transaction_id'];
40
  $payment_method = $response['payment_method'];
41
+ $trans_status = htmlentities($response['transaction_status']);
42
  $orderId = $response['merchant_transaction_id'];
43
+ $message = htmlentities($response['transaction_response_message']);
44
  $is_international = $response['is_international'];
45
  $fraud_action = $response['fraud_action'];
46
  $allow = array('SUCCESS','INITIATED','PENDING');
66
  ));
67
  } else {
68
  // There is a problem in the response we got
69
+ Mage::getSingleton('core/session')->addError(htmlentities($message));
70
  $this->cancelAction($comment);
71
  Mage_Core_Controller_Varien_Action::_redirect('checkout/onepage/failure', array(
72
  '_secure' => true
package.xml CHANGED
@@ -1,7 +1,7 @@
1
  <?xml version="1.0"?>
2
  <package>
3
  <name>PayZippy_Payment_Gateway</name>
4
- <version>0.1.0</version>
5
  <stability>stable</stability>
6
  <license uri="http://opensource.org/licenses/osl-3.0.php">OSL v3.0</license>
7
  <channel>community</channel>
@@ -16,11 +16,11 @@ Great Merchant Support - We bring Flipkart's customer obsessed service and learn
16
  100% Secure - PayZippy has undergone stringent security audits (including PCI DSS) by industry experts. PayZippy's real time risk engine analyses every transaction across 50+ risk parameters and notifies you about suspected fraudulent transactions by email/sms.&#xD;
17
  Simple Transparent Pricing - No setup fee, no annual maintenance fee, no hidden charges. Pay less as you grow.&#xD;
18
  If you have any queries or require more information about our service offering, feel free to reach out to us at contactus@payzippy.com.</description>
19
- <notes>Initial and Stable Release</notes>
20
  <authors><author><name>Cueblocks</name><user>Ravinder</user><email>ravinder.singh@cueblocks.com</email></author></authors>
21
- <date>2013-08-30</date>
22
- <time>11:46:16</time>
23
- <contents><target name="magecommunity"><dir name="FlipKart"><dir name="PayZippy"><dir name="Block"><file name="Form.php" hash="639321ea25419f962538ac89381d2b51"/><file name="Info.php" hash="d7b2736958e1843501b6b2751329378b"/><file name="Redirect.php" hash="71dbcd1edf529cba68db40fd3dc204fa"/></dir><dir name="Helper"><file name="Data.php" hash="1b17cddfc16a49371c7fa804f3326660"/></dir><dir name="Model"><dir name="Mysql4"><file name="Setup.php" hash="8adc2ac49e33c5f85daeb4c107387e14"/></dir><file name="Standard.php" hash="cd14e0d14457ac5f95a55a99e605a56c"/><dir name="System"><dir name="Config"><dir name="Source"><dir name="Payment"><dir name="Bank"><file name="Names.php" hash="6740c20c072b0ce964203e84789cb9e7"/></dir><file name="Methods.php" hash="a32152f6f96fa082eecb3c186b085963"/></dir></dir></dir></dir></dir><dir name="controllers"><file name="PaymentController.php" hash="c289d0e8302b3286b52cf626253b461f"/></dir><dir name="etc"><file name="config.xml" hash="bc09910bc88a8db0d576ab3a31771254"/><file name="system.xml" hash="cea2262317135a8d712f9ea37c47faa0"/></dir><dir name="sql"><dir name="payzippy_setup"><file name="mysql4-install-0.1.0.php" hash="c69266c1d23fe4d66405835ea60c932e"/></dir></dir></dir></dir></target><target name="magedesign"><dir name="frontend"><dir name="base"><dir name="default"><dir name="template"><dir name="payzippy"><file name="form.phtml" hash="05dd9f7b97f98f58e3cbf4fd9d589cc4"/><file name="redirect.phtml" hash="0e2722a6012d1e6859d9275d4b09683d"/></dir></dir></dir></dir></dir></target><target name="mageetc"><dir name="modules"><file name="FlipKart_PayZippy.xml" hash="6a9b3027607fb0c3212e9a829d61fa15"/></dir></target></contents>
24
  <compatible/>
25
  <dependencies><required><php><min>5.1.0</min><max>6.0.0</max></php></required></dependencies>
26
  </package>
1
  <?xml version="1.0"?>
2
  <package>
3
  <name>PayZippy_Payment_Gateway</name>
4
+ <version>0.1.1</version>
5
  <stability>stable</stability>
6
  <license uri="http://opensource.org/licenses/osl-3.0.php">OSL v3.0</license>
7
  <channel>community</channel>
16
  100% Secure - PayZippy has undergone stringent security audits (including PCI DSS) by industry experts. PayZippy's real time risk engine analyses every transaction across 50+ risk parameters and notifies you about suspected fraudulent transactions by email/sms.&#xD;
17
  Simple Transparent Pricing - No setup fee, no annual maintenance fee, no hidden charges. Pay less as you grow.&#xD;
18
  If you have any queries or require more information about our service offering, feel free to reach out to us at contactus@payzippy.com.</description>
19
+ <notes>Fixed security issues </notes>
20
  <authors><author><name>Cueblocks</name><user>Ravinder</user><email>ravinder.singh@cueblocks.com</email></author></authors>
21
+ <date>2013-10-21</date>
22
+ <time>06:47:54</time>
23
+ <contents><target name="magecommunity"><dir name="FlipKart"><dir name="PayZippy"><dir name="Block"><file name="Form.php" hash="639321ea25419f962538ac89381d2b51"/><file name="Info.php" hash="d7b2736958e1843501b6b2751329378b"/><file name="Redirect.php" hash="71dbcd1edf529cba68db40fd3dc204fa"/></dir><dir name="Helper"><file name="Data.php" hash="1b17cddfc16a49371c7fa804f3326660"/></dir><dir name="Model"><dir name="Mysql4"><file name="Setup.php" hash="8adc2ac49e33c5f85daeb4c107387e14"/></dir><file name="Standard.php" hash="cd14e0d14457ac5f95a55a99e605a56c"/><dir name="System"><dir name="Config"><dir name="Source"><dir name="Payment"><dir name="Bank"><file name="Names.php" hash="6740c20c072b0ce964203e84789cb9e7"/></dir><file name="Methods.php" hash="a32152f6f96fa082eecb3c186b085963"/></dir></dir></dir></dir></dir><dir name="controllers"><file name="PaymentController.php" hash="f9e358b67d8c1ba31152396c64126eda"/></dir><dir name="etc"><file name="config.xml" hash="bc09910bc88a8db0d576ab3a31771254"/><file name="system.xml" hash="cea2262317135a8d712f9ea37c47faa0"/></dir><dir name="sql"><dir name="payzippy_setup"><file name="mysql4-install-0.1.0.php" hash="c69266c1d23fe4d66405835ea60c932e"/></dir></dir></dir></dir></target><target name="magedesign"><dir name="frontend"><dir name="base"><dir name="default"><dir name="template"><dir name="payzippy"><file name="form.phtml" hash="05dd9f7b97f98f58e3cbf4fd9d589cc4"/><file name="redirect.phtml" hash="0e2722a6012d1e6859d9275d4b09683d"/></dir></dir></dir></dir></dir></target><target name="mageetc"><dir name="modules"><file name="FlipKart_PayZippy.xml" hash="6a9b3027607fb0c3212e9a829d61fa15"/></dir></target></contents>
24
  <compatible/>
25
  <dependencies><required><php><min>5.1.0</min><max>6.0.0</max></php></required></dependencies>
26
  </package>