Bug with & ampersand: breaks email send on forms

Permalink Browser Info Environment
Hi there.

I've come across a bug with form submissions that contain an & ampersand.
I created a form with a selectbox element that had one of the fields containing an &. If this option was ever chosen the email from the form submission would never get sent, and the field remained blank in the database.

Removing the & fixed the issue. But as it is a character that can be entered it would be nice if it could be fixed in the next update round.


Type: Ticket
Status: New
View Replies:

concrete5 Environment Information

# concrete5 Version
Core Version - 8.5.6
Version Installed - 8.5.6
Database Version - 20210622145600

# Database Information
Version: 10.5.17-MariaDB-cll-lve

# concrete5 Packages
Formidable (Full Version) (, Motif (1.0.0), Styled Maps (1.2.3)

# concrete5 Overrides
blocks/feature_box/icon.png, blocks/feature_box/controller.php, blocks/feature_box/view.css, blocks/feature_box/view.php, blocks/feature_box/form.php, blocks/feature_box/db.xml, blocks/feature_box/add.php, blocks/feature_box/edit.php, blocks/feature_box, blocks/main_feature/icon.png, blocks/main_feature/controller.php, blocks/main_feature/view.css, blocks/main_feature/view.php, blocks/main_feature/form.php, blocks/main_feature/db.xml, blocks/main_feature/add.php, blocks/main_feature/edit.php, blocks/main_feature, blocks/collapsible/icon.png, blocks/collapsible/controller.php, blocks/collapsible/view.php, blocks/collapsible/form.php, blocks/collapsible/db.xml, blocks/collapsible/add.php, blocks/collapsible/edit.php, blocks/collapsible, blocks/autonav/templates/motif_navbar_right/view.css, blocks/autonav/templates/motif_navbar_right/view.php, blocks/autonav/templates/motif_navbar_right, blocks/autonav/templates, blocks/autonav, blocks/team_member/icon.png, blocks/team_member/controller.php, blocks/team_member/view.css, blocks/team_member/view.php, blocks/team_member/form.php, blocks/team_member/db.xml, blocks/team_member/add.php, blocks/team_member/edit.php, blocks/team_member

# concrete5 Cache Settings
Block Cache - On
Overrides Cache - On
Full Page Caching - On - If blocks on the particular page allow it.
Full Page Cache Lifetime - Only when manually removed or the cache is cleared.

# Server Software

# Server API

# PHP Version

# PHP Extensions
bcmath, bz2, calendar, Core, ctype, curl, date, dba, dom, enchant, exif, fileinfo, filter, ftp, gd, gettext, gmp, hash, iconv, imap, intl, json, ldap, libxml, litespeed, mbstring, mysqli, mysqlnd, odbc, openssl, pcntl, pcre, PDO, pdo_mysql, PDO_ODBC, pdo_sqlite, Phar, posix, pspell, readline, Reflection, session, shmop, SimpleXML, snmp, soap, sockets, SPL, sqlite3, standard, sysvmsg, sysvsem, sysvshm, timezonedb, tokenizer, xml, xmlreader, xmlrpc, xmlwriter, xsl, zip, zlib

# PHP Settings
max_execution_time - 90
log_errors_max_len - 1024
max_file_uploads - 20
max_input_nesting_level - 64
max_input_time - -1
max_input_vars - 1000
memory_limit - 256M
post_max_size - 32M
upload_max_filesize - 20M
ldap.max_links - Unlimited
mbstring.regex_retry_limit - 1000000
mbstring.regex_stack_limit - 100000
mysqli.max_links - Unlimited
mysqli.max_persistent - Unlimited
odbc.max_links - Unlimited
odbc.max_persistent - Unlimited
pcre.backtrack_limit - 1000000
pcre.recursion_limit - 100000
session.cache_limiter - <i>no value</i>
session.gc_maxlifetime - 7200
soap.wsdl_cache_limit - 5
unserialize_max_depth - 4096

Browser User-Agent String

Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Firefox/102.0

Hide Post Content

This will replace the post content with the message: "Content has been removed by an Administrator"

Hide Content

Request Refund

You may not request a refund that is not currently owned by you.