View ProjeQtOr On SourceForge.net
ProjeQtOr - Project Management Tool
Supportez nous sur Capterra
OIN - Open Invention Network
ProjeQtOr free project management software - Try to Hack detected when changing validated due date in milestone - ProjeQtOr

Prochaines Sessions

Les prochaines formations et démonstrations sont ouvertes, inscrivez-vous rapidement !

 

Démonstration de ProjeQtOr

(gratuit, sur inscription)
 

13 mai 2025 (10h30-12h)

5 juin 2025 (16h-17h30)

  
 

Planifiez avec ProjeQtOr

15 et 16 avril 2025 (9h-12h30)

14 et 15 mai 2025 (9h-12h30)

  
 

Administrez avec ProjeQtOr

23 et 24 avril (9h-12h30)

20 et 21 mai (9h-12h30)

  

 

 

Try to Hack detected when changing validated due date in milestone

More
27 Oct 2024 14:07 - 27 Oct 2024 14:08 #1 by karl.binet
Try to Hack detected when changing validated due date in milestone was created by karl.binet
Hello,

V11.4.1

As soon as a user tries to change the validated due date in a milestone and hit SAVE, the projeqtor logo never stops spinning and after about 20 seconds i'm gettings disconnected (lost connection).

and i have this in the logs

Can you have a look please.

2024-10-27 08:33:44.595 ***** ERROR ***** [V11.4.1] [27] Try to hack detected
2024-10-27 08:33:44.595 ***** ERROR ***** [V11.4.1] [27] Source Code = Invalid dateTime format for 'Fri Feb 09 2024 00:00:00 GMT-0500 (heure normale de l’Est nord-américain)' : only 5 to 19 characters length possible
2024-10-27 08:33:44.595 ***** ERROR ***** [V11.4.1] [27] QUERY_STRING = csrfToken=&destinationWidth=50&destinationHeight=0&isIE=&xhrPostDestination=resultDivMain&xhrPostIsResultMessage=true&xhrPostValidationType=&xhrPostTimestamp=1730032424405&csrfToken=
2024-10-27 08:33:44.595 ***** ERROR ***** [V11.4.1] [27] REMOTE_ADDR = 10.1.120.51
2024-10-27 08:33:44.595 ***** ERROR ***** [V11.4.1] [27] SCRIPT_FILENAME = /var/www/html/tool/saveObject.php
2024-10-27 08:33:44.595 ***** ERROR ***** [V11.4.1] [27] CONNECTED USER = #27 - karl.binet
2024-10-27 08:33:44.595 ***** ERROR ***** [V11.4.1] [27] === Trace Stack for last error ===
2024-10-27 08:33:44.595 ***** ERROR ***** [V11.4.1] [27] => /var/www/html/tool/projeqtor.php at line 1698 calling debugPrintTraceStack()
2024-10-27 08:33:44.595 ***** ERROR ***** [V11.4.1] [27] => /var/www/html/model/Security.php at line 106 calling traceHack()
2024-10-27 08:33:44.595 ***** ERROR ***** [V11.4.1] [27] => /var/www/html/model/persistence/SqlElement.php at line 3495 calling Security:checkValidDateTime()
2024-10-27 08:33:44.595 ***** ERROR ***** [V11.4.1] [27] => /var/www/html/model/persistence/SqlElement.php at line 3426 calling SqlElement:fillSqlElementFromRequest()
2024-10-27 08:33:44.595 ***** ERROR ***** [V11.4.1] [27] => /var/www/html/model/persistence/SqlElement.php at line 3000 calling SqlElement:fillSqlElementFromRequest()
2024-10-27 08:33:44.595 ***** ERROR ***** [V11.4.1] [27] => /var/www/html/tool/saveObject.php at line 70 calling SqlElement:fillFromRequest()
2024-10-27 08:33:44.595 ***** ERROR ***** [V11.4.1] [27] ===
2024-10-27 08:33:44.595 ***** ERROR ***** [V11.4.1] [27] REQUEST_URI = /tool/saveObject.php?csrfToken=&destinationWidth=50&destinationHeight=0&isIE=&xhrPostDestination=resultDivMain&xhrPostIsResultMessage=true&xhrPostValidationType=&xhrPostTimestamp=1730032424405&csrfToken=
2024-10-27 08:33:44.820 ===== TRACE ===== API : mode=GET user=svc_reader, id=525, profile=17
2024-10-27 08:34:29.933 ===== TRACE ===== API : mode=GET user=svc_reader, id=525, profile=17
2024-10-27 08:35:11.904 ===== TRACE ===== [27] NEW CONNECTED USER 'karl.binet'
2024-10-27 08:35:45.728 ***** ERROR ***** [V11.4.1] [27] HACK ================================================================
2024-10-27 08:35:45.728 ***** ERROR ***** [V11.4.1] [27] Try to hack detected
2024-10-27 08:35:45.728 ***** ERROR ***** [V11.4.1] [27] Source Code = Invalid dateTime format for 'Fri Feb 09 2024 00:00:00 GMT-0500 (heure normale de l’Est nord-américain)' : only 5 to 19 characters length possible
2024-10-27 08:35:45.728 ***** ERROR ***** [V11.4.1] [27] QUERY_STRING = csrfToken=&destinationWidth=50&destinationHeight=0&isIE=&xhrPostDestination=resultDivMain&xhrPostIsResultMessage=true&xhrPostValidationType=&xhrPostTimestamp=1730032545536&csrfToken=
2024-10-27 08:35:45.728 ***** ERROR ***** [V11.4.1] [27] REMOTE_ADDR = 10.1.120.51
2024-10-27 08:35:45.728 ***** ERROR ***** [V11.4.1] [27] SCRIPT_FILENAME = /var/www/html/tool/saveObject.php
2024-10-27 08:35:45.728 ***** ERROR ***** [V11.4.1] [27] CONNECTED USER = #27 - karl.binet
2024-10-27 08:35:45.728 ***** ERROR ***** [V11.4.1] [27] === Trace Stack for last error ===
2024-10-27 08:35:45.728 ***** ERROR ***** [V11.4.1] [27] => /var/www/html/tool/projeqtor.php at line 1698 calling debugPrintTraceStack()
2024-10-27 08:35:45.728 ***** ERROR ***** [V11.4.1] [27] => /var/www/html/model/Security.php at line 106 calling traceHack()
2024-10-27 08:35:45.729 ***** ERROR ***** [V11.4.1] [27] => /var/www/html/model/persistence/SqlElement.php at line 3495 calling Security:checkValidDateTime()
2024-10-27 08:35:45.729 ***** ERROR ***** [V11.4.1] [27] => /var/www/html/model/persistence/SqlElement.php at line 3426 calling SqlElement:fillSqlElementFromRequest()
2024-10-27 08:35:45.729 ***** ERROR ***** [V11.4.1] [27] => /var/www/html/model/persistence/SqlElement.php at line 3000 calling SqlElement:fillSqlElementFromRequest()
2024-10-27 08:35:45.729 ***** ERROR ***** [V11.4.1] [27] => /var/www/html/tool/saveObject.php at line 70 calling SqlElement:fillFromRequest()
2024-10-27 08:35:45.729 ***** ERROR ***** [V11.4.1] [27] ===
2024-10-27 08:35:45.729 ***** ERROR ***** [V11.4.1] [27] REQUEST_URI = /tool/saveObject.php?csrfToken=&destinationWidth=50&destinationHeight=0&isIE=&xhrPostDestination=resultDivMain&xhrPostIsResultMessage=true&xhrPostValidationType=&xhrPostTimestamp=1730032545536&csrfToken=
Last edit: 27 Oct 2024 14:08 by karl.binet.

Please Connexion or Create an account to join the conversation.

More
28 Oct 2024 00:25 #2 by babynus
Replied by babynus on topic Try to Hack detected when changing validated due date in milestone
Hi,

This issue is fixed.
Fix is available through subscription service.
Will be available on next version.
Babynus
Administrator of ProjeQtOr web site

Please Connexion or Create an account to join the conversation.

Moderators: babynusprotion
Time to create page: 0.058 seconds

Paramétrages de cookies

×

Cookies fonctionnels

Ce site utilise des cookies pour assurer son bon fonctionnement et ne peuvent pas être désactivés de nos systèmes. Nous ne les utilisons pas à des fins publicitaires. Si ces cookies sont bloqués, certaines parties du site ne pourront pas fonctionner.

Session

Veuillez vous connecter pour voir vos activités!

Autres cookies

Ce site web utilise un certain nombre de cookies pour gérer, par exemple, les sessions utilisateurs.

Login Form