Storing session info in a cookie

adammc

Hi,

I am trying to hack into the code on a shopping cart script I bought (phpcart):
http://www.phpcart.net

I am trying to get the script to retain the cart contents if a visitor adds products to the cart then decides they want to finish shopping another day.

I have NO idea how to do this, I found a post on their message board, but the board isnt very active and I cant get a reply.

They told me this much:

phpCart uses PHP Sessions to track visitors. It then stores only one piece of information about the visitor in the session, a unique id. This unique id is called sessionid but had no relationship to an actual php session.

If you look at the top of phpcart.php you'll see the following:

session_start();
$sessionid = $_SESSION["sessionid"];
if ($sessionid == ""){
$sessionid = md5 (uniqid(rand()));
session_register(sessionid);
}

If you modify this to store the $sessionid in a cookie and then also check to see if the cookie exists you can preserve the unique id between visits.

I'll leave the rest up to you for know.

Any help would be GREATLY appreciated 🙂

adammc

Here is the code that stores the cart contents into the session:


// Add product to cart
	if ($_REQUEST["action"]=="add") {

	$row = 1;
	$fp = fopen ("./sessions/".$sessionid.".dat", "a+");
	rewind($fp);
	$coupon = fgetcsv ($fp, 50);
	$coupon = $coupon[0];
	if ($noduplicates == "Y"){
		while ($data = fgetcsv ($fp, 500)) {
			$row++;
			if ($data[0] == $_REQUEST["id"] && $noduplicates = "Y") {
				?>
								<center><font size="<? echo $fontSize+1; ?>" face="<? echo $font; ?>" color="<? echo $TextColor; ?>"><b><? echo $ProductInBasket; ?></b></font></center><?
				break;
			}
		}
	}