Details
Bug
Major
Description
The Blesta CCAvenue documentation indicates that mcrypt is required, but despite mcrypt appearing in the PHP info on PHP 7.2-7.4, it was deprecated in PHP 7.1 and removed in PHP 7.2. If this is the cause for the issue, it means that CCAvenue no longer works with Blesta on any supported PHP version.
To reproduce, install and configure CCAvenue. Click to make a payment using the CCAvenue button as a client. The following error is shown on CCAvenue's website:
Error Code: 10001 Invalid Request - Encrypted request invalid/not present.
Presumably the hidden field "encRequest" has invalid encrypted details due to mcrypt. Either due to mcrypt having been removed, or whatever mcrypt appears in PHP info not being the same mcrypt as previously used, or perhaps an incompatibility with this "new" mcrypt and PHPSeclib.
The gateway needs to be updated to be compatible with PHP 7.2+
