<html>
<head>
<style><!--
.hmmessage P
{
margin:0px;
padding:0px
}
body.hmmessage
{
font-size: 10pt;
font-family:Tahoma
}
--></style>
</head>
<body class='hmmessage'>
> I recently trialled our main catalog on IC 5.6.3 (from 5.6.0) and found that<BR>> one legacy order profile failed that uses a form post to Paypal.<BR>> <BR>> The profile uses mv_order_receipt to load an html page as below that posts a<BR>> form,<BR>> <BR>> <body onLoad="paypal.submit()"><BR>> <form name="paypal" action="https://www.paypal.com/cgi-bin/webscr"<BR>> method="post"> <input type=hidden name="some variable" value="some value"> .<BR>> .<BR>> .<BR>> .<BR>> </form><BR>> <BR>> I know security has been tightened on 5.6.3, is this why this no longer<BR>> works?<BR>> <BR>> On 5.6.3 it throws a 500 sever error and in the apache log shows premature<BR>> end of script headers.<BR>> <BR>> On 5.6.0 it works as it always has done.<BR><BR>
<BR>
Check your order number counter. I seem to remember some behavior when going to a new/different system that if the order number counter is not set to continue correctly, there were 500ISE's.<BR>
<BR>
Paul<BR>                                            </body>
</html>