View ProjeQtOr On SourceForge.net
ProjeQtOr - Project Management Tool
Supportez nous sur Capterra
OIN - Open Invention Network
ProjeQtOr free project management software - Cross site scripting issue during installation - ProjeQtOr

Prochaines Sessions

Les prochaines formations et démonstrations sont ouvertes, inscrivez-vous rapidement !

 

Démonstration de ProjeQtOr

(gratuit, sur inscription)
 

13 mai 2025 (10h30-12h)

5 juin 2025 (16h-17h30)

  
 

Planifiez avec ProjeQtOr

15 et 16 avril 2025 (9h-12h30)

14 et 15 mai 2025 (9h-12h30)

  
 

Administrez avec ProjeQtOr

23 et 24 avril (9h-12h30)

20 et 21 mai (9h-12h30)

  

 

 

Cross site scripting issue during installation

More
18 Juil 2024 21:02 #1 by berthelemy
Cross site scripting issue during installation was created by berthelemy
Bonjour / Hi,

I'm installing on a shared hosting site (PlanetHoster). The firewall there prevented me from saving the configuration file. I could only proceed by switching off the rule that was being invoked (see below)

Am I safe to continue with this firewall rule switched off?

Merci,

Mark

Firewall report

ID : 341256Severity: CRITICALLabel : -info : Atomicorp.com WAF Rules: Possible Cross Site Scripting attack (detectXSS)message : Access denied with code 403 (phase 2). detected XSS using libinjection.Request InfoDate : 18/07/2024, 20:50 GMT+2HTTP method: POSTClient IP: 89.91.136.172Port: 2080Protocol: HTTP/1.1Uri: /tool/configCheck.php?destinationWidth=1038&destinationHeight=82.5&isIE=&xhrPostDestination=configResultDiv&xhrPostIsResultMessage=false&xhrPostValidationType=&xhrPostTimestamp=1721328614008&csrfToken=Response status : 403

Please Connexion or Create an account to join the conversation.

More
19 Juil 2024 18:53 #2 by babynus
Replied by babynus on topic Cross site scripting issue during installation
This question is out of ProjeQtOr scope.
Please ask your web hoster.
Babynus
Administrator of ProjeQtOr web site

Please Connexion or Create an account to join the conversation.

More
22 Juil 2024 16:56 #3 by berthelemy
Replied by berthelemy on topic Cross site scripting issue during installation
Thanks. I will.

I was more concerned about why Projeqtor was triggering the XSS warning?

Please Connexion or Create an account to join the conversation.

More
23 Juil 2024 10:37 #4 by babynus
Replied by babynus on topic Cross site scripting issue during installation
Possibly the install process for your hosted server is looking like a XSS attack.
If your hoster uses control interface such as CPanle, you may use Softaculous image of ProjeQtOr to install it fluently.
Babynus
Administrator of ProjeQtOr web site
The following user(s) said Thank You: berthelemy

Please Connexion or Create an account to join the conversation.

Moderators: babynusprotion
Time to create page: 0.092 seconds

Paramétrages de cookies

×

Cookies fonctionnels

Ce site utilise des cookies pour assurer son bon fonctionnement et ne peuvent pas être désactivés de nos systèmes. Nous ne les utilisons pas à des fins publicitaires. Si ces cookies sont bloqués, certaines parties du site ne pourront pas fonctionner.

Session

Veuillez vous connecter pour voir vos activités!

Autres cookies

Ce site web utilise un certain nombre de cookies pour gérer, par exemple, les sessions utilisateurs.

Login Form