HTML Logo by World Wide Web Consortium (www.w3.org). Click to learn more about our commitment to accessibility and standards.

Moving forward with Composr

ocPortal has been relaunched as Composr CMS, which is now in beta. ocPortal 9 will be superseded by Composr 10.

Head over to compo.sr for our new site, and to our migration roadmap. Existing ocPortal member accounts have been mirrored.


Actual Hacking Attempt?

Login / Search

 [ Join | More ]
 Add topic 
Posted
Rating:
#44244 (In Topic #9816)
Avatar

Well-settled

Been getting this for several days and though the IP addresses change, the system message usually looks something like this (I X'ed out the IP address for this post) -
 
 Reason: A suspicious GET parameter was given (id as 4" class="neww" target="_blank" title="Im neuen Fenster )
 IP address: XXXXXXXXX
 Member ID: 1
 Username: Guest
 User Agent (typically, the web browser): Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.9) Gecko/20050711 Firefox/1.0.5
 Referrer:
 Operating System: X11; U; Linux i686; en-US; rv:1.7.9
 Date and time: 6:29 PM
 URL: /portal/site/index.php?page=catalogues&catalogue=faqs&type=c
 ategory&id=4%22%20class=%22neww%22%20target=%22_blank%22%20
ti
 tle=%22Im%20neuen%20Fenster%20öffnen/ocp-103/in
 
 
 Thanks
Back to the top
 
Posted
Rating:
#44248
Avatar

Please see:
ocPortal.com - View topic: [4.0.5] Links in news

I didn't realise this bug could trigger hack attempts, but given the URLs were corrupting, I think it's very likely to be the cause.


Become a fan of ocPortal on Facebook or add me as a friend. Add me on on Twitter.
Was I helpful?
  • If not, please let us know how we can do better (please try and propose any bigger ideas in such a way that they are fundable and scalable).
  • If so, please let others know about ocPortal whenever you see the opportunity.
  • If my reply is too Vulcan or expressed too much in business-strategy terms, and not particularly personal, I apologise. As a company & project maintainer, time is very limited to me, so usually when I write a reply I try and make it generic advice to all readers. I'm also naturally a joined-up thinker, so I always express my thoughts in combined business and technical terms. I recognise not everyone likes that, don't let my Vulcan-thinking stop you enjoying ocPortal on fun personal projects.
  • If my response can inspire a community tutorial, that's a great way of giving back to the project as a user.
Back to the top
 
Posted
Rating:
#44279
Avatar

Well-settled

That seems to have cleared up the issue nicely. No problems since applying the patch.

Thanks
Back to the top
 
There are too many online users to list.
Control functions:

Quick reply   Contract

Your name:
Your message: