From: Luis H. F. <lhf...@gm...> - 2006-03-30 14:44:11
|
hmmm, mod-security says we're passing an sql-query in $_POST. weird. batawata On 3/30/06, Xavier de Pedro Puente <xav...@ub...> wrote: > Hi there: > > I've hit a server error while attempting to edit a forum post, on a > 1.10cvs (cvs updated 3 weeks ago or so). > I don't post it to get a quick solution, or similar, (that site is > working pretty fine so far for production, with the help from sylvie and > batawata), so please I wouldn't need the kind of reply "to avoid it, > work on 1.9.x version", etc. > > I just comment it to let you know about that issue, in case it happen in > the future on other servers with mod-security enabled. > > What surprises me is that I could post the message in forum post some > seconds earlier, and the problem arose when I attempted to save the > edition of that forum post. > > That's what the server admin replied back about the server logs... (see > below) > > Cheers, > > Xavi > > =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D > POST /tiki-view_forum_thread.php HTTP/1.1 > Accept: > text/xml,application/xml,application/xhtml+xml,text/html;q=3D0.9,text/pla= in;q=3D0.8,image/png,*/*;q=3D0.5 > Accept-Charset: ISO-8859-1,utf-8;q=3D0.7,*;q=3D0.7 > Accept-Encoding: gzip,deflate > Accept-Language: ca > Connection: keep-alive > Content-Length: 5733 > Content-Type: multipart/form-data; > boundary=3D---------------------------60419519320710553501442250703 > Cookie: tz_offset=3D7200; PHPSESSID=3D78597fcf5bf9674cc9d978b9c30597af > Host: uniwiki.ourproject.org > Keep-Alive: 300 > Referer: > http://uniwiki.ourproject.org/tiki-view_forum_thread.php?forumId=3D8&comm= ents_threadId=3D117&comments_threshold=3D0&comments_offset=3D0&comments_sor= t_mode=3DcommentDate_desc&comments_maxComments=3D20&comments_parentId=3D112= &comments_style=3DcommentStyle_threaded&edit_reply=3D1 > <http://uniwiki.ourproject.org/tiki-view_forum_thread.php?forumId=3D8&com= ments_threadId=3D117&comments_threshold=3D0&comments_offset=3D0&comments_so= rt_mode=3DcommentDate_desc&comments_maxComments=3D20&comments_parentId=3D11= 2&comments_style=3DcommentStyle_threaded&edit_reply=3D1> > User-Agent: Mozilla/5.0 (X11; U; Linux i686; ca-AD; rv:1.7.12) > Gecko/20051010 Firefox/1.0.7 (Ubuntu package 1.0.7) > mod_security-message: Access denied with code 500. Pattern match > "((select|grant|delete|insert|drop|alter|replace|truncate|update|create|r= ename|describe)[[:space:]]+[A-Z|a-z|0-9|\*| > |\,]+[[:space:]]+(from|into|table|database|index|view)[[:space:]]+[A-Z|a-= z|0-9|\*| > |\,]|UNION SELECT.*\'.*\'.*,[0-9].*INTO.*FROM)" at POST_PAYLOAD. > mod_security-action: 500 > =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D > > > > > ------------------------------------------------------- > This SF.Net email is sponsored by xPML, a groundbreaking scripting langua= ge > that extends applications into web and mobile media. Attend the live webc= ast > and join the prime developer group breaking into this new coding territor= y! > http://sel.as-us.falkag.net/sel?cmd=3Dlnk&kid=3D110944&bid=3D241720&dat= =3D121642 > _______________________________________________ > Tikiwiki-devel mailing list > Tik...@li... > https://lists.sourceforge.net/lists/listinfo/tikiwiki-devel > |