View ProjeQtOr On SourceForge.net
ProjeQtOr - Project Management Tool
Support us on Capterra
OIN - Open Invention Network
ProjeQtOr free project management software - Investigation Required: "Hack Detected" Log Entry for Registered User - ProjeQtOr
 

Investigation Required: "Hack Detected" Log Entry for Registered User

More
18 Dec 2024 10:05 #1 by chandrashekhar
Hi,Today, I encountered the following log entry indicating a "hack detected" event for a user who is registered in ProjeQtOr:
 
2024-12-18 10:48:28.927 ***** ERROR ***** [V11.4.2] [133] HACK ================================================================
2024-12-18 10:48:28.927 ***** ERROR ***** [V11.4.2] [133] Try to hack detected
2024-12-18 10:48:28.928 ***** ERROR ***** [V11.4.2] [133] Source Code = checkValidAccessForUser() Reject for Project - no access to screen 'Project'
2024-12-18 10:48:28.928 ***** ERROR ***** [V11.4.2] [133] QUERY_STRING = objectClass=Project&objectType=&objectClient=&budgetParent=&objectElementable=&comboDetail=true&showAllProjects=on
2024-12-18 10:48:28.929 ***** ERROR ***** [V11.4.2] [133] REMOTE_ADDR = 1xx.1xx.x.x
2024-12-18 10:48:28.929 ***** ERROR ***** [V11.4.2] [133] SCRIPT_FILENAME = C:/Apache24/htdocs/projeqtor/tool/jsonQuery.php
2024-12-18 10:48:28.929 ***** ERROR ***** [V11.4.2] [133] CONNECTED USER = #133 - pxxxxi.axxk@mxxxxxxxc.com
2024-12-18 10:48:28.930 ***** ERROR ***** [V11.4.2] [133] === Trace Stack for last error ===
2024-12-18 10:48:28.930 ***** ERROR ***** [V11.4.2] [133] => C:\Apache24\htdocs\projeqtor\tool\projeqtor.php at line 1698 calling debugPrintTraceStack()
2024-12-18 10:48:28.930 ***** ERROR ***** [V11.4.2] [133] => C:\Apache24\htdocs\projeqtor\model\Security.php at line 384 calling traceHack()
2024-12-18 10:48:28.930 ***** ERROR ***** [V11.4.2] [133] => C:\Apache24\htdocs\projeqtor\tool\jsonQuery.php at line 45 calling Security:checkValidAccessForUser()
2024-12-18 10:48:28.931 ***** ERROR ***** [V11.4.2] [133] ===
2024-12-18 10:48:28.931 ***** ERROR ***** [V11.4.2] [133] REQUEST_URI = /projeqtor./tool/jsonQuery.php?objectClass=Project&objectType=&objectClient=&budgetParent=&objectElementable=&comboDetail=true&showAllProjects=on
Could you please investigate why this "hack detected" message is appearing for a legitimate user?

It seems the user attempted to access the 'Project' screen without the necessary permissions, which triggered the security alert.Your assistance in resolving this issue would be greatly appreciated.  

Please Log in or Create an account to join the conversation.

Moderators: babynusprotion
Time to create page: 0.031 seconds

Cookies settings

×

Functional Cookies

Ce site utilise des cookies pour assurer son bon fonctionnement et ne peuvent pas être désactivés de nos systèmes. Nous ne les utilisons pas à des fins publicitaires. Si ces cookies sont bloqués, certaines parties du site ne pourront pas fonctionner.

Session

Please login to see yours activities!

Other cookies

Ce site web utilise un certain nombre de cookies pour gérer, par exemple, les sessions utilisateurs.