View Issue Details

Jump to NotesJump to History
IDProjectCategoryView StatusDate SubmittedLast Update
1920Composr alpha bug reportsdownloadspublic2015-05-24 03:412015-05-25 16:36
ReporterAdam Edington Assigned ToChris Graham  
PrioritynormalSeverityfeature 
Status resolvedResolutionfixed 
Summary1920: v10 Downloads
DescriptionThe website software has detected what may be a hacking attempt. Please do not be alarmed, and unless you are really trying to hack the website, nobody will question you. Please do not click refresh though or you could be automatically banned. If you got here via a link, please inform the link maintainer of the problem. (version: 10 alpha1, PHP version: 5.5.25, URL: /demo/composr/site/index.php?page=downloads&type=browse&id=downloads-home&keep_fatalistic=1)
TagsNo tags attached.
Attach Tags
Sponsorship open

Sponsor

Date Added Member Amount Sponsored

Activities

Chris Graham

2015-05-24 10:13

administrator   ~2813

Can you post a stack trace?

Adam Edington

2015-05-25 04:09

administrator   ~2816

File 'C:\\Bitnami\\wampstack-5.5.25-0\\apache2\\htdocs\\demo\\composr\\sources\\failure.php'
Line 963
Function 'get_html_trace'
Args
File 'C:\\Bitnami\\wampstack-5.5.25-0\\apache2\\htdocs\\demo\\composr\\sources\\global2.php'
Line 865
Function '_fatal_exit'
Args

Tempcode -> The website software has detected what may be a hacking attempt. Please do not be alarmed, and unless you are really trying to hack the website, nobody will question you. Please do not click refresh though or you could be automatically banned. If you got here via a link, please inform the link maintainer of the problem.
File 'C:\\Bitnami\\wampstack-5.5.25-0\\apache2\\htdocs\\demo\\composr\\sources\\failure.php'
Line 355
Function 'fatal_exit'
Args

Tempcode -> The website software has detected what may be a hacking attempt. Please do not be alarmed, and unless you are really trying to hack the website, nobody will question you. Please do not click refresh though or you could be automatically banned. If you got here via a link, please inform the link maintainer of the problem.
File 'C:\\Bitnami\\wampstack-5.5.25-0\\apache2\\htdocs\\demo\\composr\\sources\\global2.php'
Line 849
Function '_generic_exit'
Args

Tempcode -> The website software has detected what may be a hacking attempt. Please do not be alarmed, and unless you are really trying to hack the website, nobody will question you. Please do not click refresh though or you could be automatically banned. If you got here via a link, please inform the link maintainer of the problem.

'WARN_SCREEN'

false
File 'C:\\Bitnami\\wampstack-5.5.25-0\\apache2\\htdocs\\demo\\composr\\sources\\failure.php'
Line 705
Function 'warn_exit'
Args

Tempcode -> The website software has detected what may be a hacking attempt. Please do not be alarmed, and unless you are really trying to hack the website, nobody will question you. Please do not click refresh though or you could be automatically banned. If you got here via a link, please inform the link maintainer of the problem.
File 'C:\\Bitnami\\wampstack-5.5.25-0\\apache2\\htdocs\\demo\\composr\\sources\\global2.php'
Line 881
Function '_log_hack_attack_and_exit'
Args

'ORDERBY_HACK'

''

''

false

false
File 'C:\\Bitnami\\wampstack-5.5.25-0\\apache2\\htdocs\\demo\\composr\\site\\pages\\modules\\downloads.php'
Line 487
Function 'log_hack_attack_and_exit'
Args

'ORDERBY_HACK'
File 'C:\\Bitnami\\wampstack-5.5.25-0\\apache2\\htdocs\\demo\\composr\\site\\pages\\modules\\downloads.php'
Line 444
Function 'view_category_screen'
Class 'Module_downloads'
Object O:16:"Module_downloads":9:{s:5:"title";O:8:"Tempcode":5:{s:18:"code_to_preexecute";a:4:{s:22:"tcpfunc_SCREEN_TITLE_1";s:675:"$tpl_funcs['tcpfunc_SCREEN_TITLE_1']=$KEEP_TPL_FUNCS['tcpfunc_SCREEN_TITLE_1']=recall_named_function('5561876c52ac05.62630191','$parameters,$cl',"extract(\$parameters,EXTR_PREFIX_ALL,'bound'); echo (isset(\$bound_ID)?(\"\\npure_lang)?str_replace(\$GLOBALS['HTML_ESCAPE_1_STRREP'],\$GLOBALS['HTML_ESCAPE_2'],otp(isset(\$bound_ID)?\$bound_ID:NULL,\"ID/SCREEN_TITLE\")):otp(isset(\$bound_ID)?\$bound_ID:NULL,\"ID/SCREEN_TITLE\")).\"\\\">\\n\"):''),\n \"\\n\\n
\\n \";");";s:22:"tcpfunc_SCREEN_TITLE_2";s:284:"$tpl_funcs['tcpfunc_SCREEN_TITLE_2']=$KEEP_TPL_FUNCS['tcpfunc_SCREEN_TITLE_2']=recall_named_function('5561876c52ac09.88632773','$parameters,$cl',"extract(\$parameters,EXTR_PREFIX_ALL,'bound'); echo otp(isset(\$bound_TITLE)?\$bound_TITLE:NULL,\"TITLE/SCREEN_TITLE\"),\n \"\\n\\n \";");";s:22:"tcpfunc_SCREEN_TITLE_3";s:1996:"$tpl_funcs['tcpfunc_SCREEN_TITLE_3']=$KEEP_TPL_FUNCS['tcpfunc_SCREEN_TITLE_3']=recall_named_function('5561876c52ac03.89622711','$parameters,$cl',"extract(\$parameters,EXTR_PREFIX_ALL,'bound'); echo (isset(\$bound_AWARDS)?(\"\\n \".((otp(isset(\$bound_AWARDS)?\$bound_AWARDS:NULL,\"AWARDS/SCREEN_TITLE\")!='')?(\"\\n \".ecv(\$cl,array(),4,\"SET\",array(\"AWARDS_TEXT\",\"\\n
\".\"Award winner\".\"
\\n

\".ecv(\$cl,array(),2,\"AWARDS_WON\",array(otp(isset(\$bound_AWARDS)?\$bound_AWARDS:NULL,\"AWARDS/SCREEN_TITLE\"))).\"
\\n

    \\n \".closure_loop(array(\"AWARDS\",'vars'=>\$parameters),array(\$parameters,\$cl),\nrecall_named_function('5561876c526d82.47740385','\$parameters,\$cl',\"extract(\\\$parameters,EXTR_PREFIX_ALL,'bound'); return \\\"\\\\n
    \\\\n \\\".(empty(\\\$bound_AWARD_TYPE->pure_lang)?str_replace(\\\$GLOBALS['HTML_ESCAPE_1_STRREP'],\\\$GLOBALS['HTML_ESCAPE_2'],otp(isset(\\\$bound_AWARD_TYPE)?\\\$bound_AWARD_TYPE:NULL,\\\"AWARD_TYPE/SCREEN_TITLE\\\")):otp(isset(\\\$bound_AWARD_TYPE)?\\\$bound_AWARD_TYPE:NULL,\\\"AWARD_TYPE/SCREEN_TITLE\\\")).\\\"\\\\n \\\".ecv(\\\$cl,array(),2,\\\"AWARD_ON\\\",array(ecv_DATE(\\\$cl,array(1),array(\\\"1\\\",\\\"1\\\",\\\"1\\\",otp(isset(\\\$bound_AWARD_TIMESTAMP)?\\\$bound_AWARD_TIMESTAMP:NULL,\\\"AWARD_TIMESTAMP/SCREEN_TITLE\\\"))))).\\\"\\\\n
    \\\\n \\\";\")).\"\\n

\\n \")).\"\\n \\\"\".\"Award\\n \"):'').\"\\n \"):''),\n \"\\n\\n\\n\";");";s:22:"tcpfunc_SCREEN_TITLE_4";s:365:"$tpl_funcs['tcpfunc_SCREEN_TITLE_4']=$KEEP_TPL_FUNCS['tcpfunc_SCREEN_TITLE_4']=recall_named_function('5561876c52ac07.92534939','$parameters,$cl',"extract(\$parameters,EXTR_PREFIX_ALL,'bound'); echo (isset(\$bound_SUB)?(\"\\n
\\n \".otp(isset(\$bound_SUB)?\$bound_SUB:NULL,\"SUB/SCREEN_TITLE\").\"\\n
\\n\"):''),\n \"\\n\";");";}s:9:"seq_parts";a:1:{i:0;a:4:{i:0;a:5:{i:0;s:22:"tcpfunc_SCREEN_TITLE_1";i:1;a:3:{s:5:"_GUID";s:32:"847ffbe4823eca6d2d5eac42828ee552";s:6:"AWARDS";a:0:{}s:5:"TITLE";O:8:"Tempcode":5:{s:18:"code_to_preexecute";a:1:{s:38:"do_runtime_5562af335aa409.97932750_158";s:212:"$tpl_funcs['do_runtime_5562af335aa409.97932750_158']="foreach (\$parameters as \$i=>\$p) { if (is_object(\$p)) \$parameters[\$i]=\$p->evaluate(); } echo ecv(\$cl,array(),2,\"_DOWNLOAD_CATEGORY\",\$parameters);"; ";}s:9:"seq_parts";a:1:{i:0;a:1:{i:0;a:5:{i:0;s:38:"do_runtime_5562af335aa409.97932750_158";i:1;a:1:{i:0;O:8:"Tempcode":5:{s:18:"code_to_preexecute";a:1:{s:38:"do_runtime_5562af335aa409.97932750_157";s:214:"$tpl_funcs['do_runtime_5562af335aa409.97932750_157']="echo ecv(\$cl,array(),4,\"FRACTIONAL_EDITABLE\",array(\"Downloads home\",\"category\",\"_SEARCH:cms_downloads:__edit_category:1\",\"0\",\"Downloads home\"));"; ";}s:9:"seq_parts";a:1:{i:0;a:1:{i:0;a:5:{i:0;s:38:"do_runtime_5562af335aa409.97932750_157";i:1;a:0:{}i:2;i:4;i:3;s:19:"FRACTIONAL_EDITABLE";i:4;s:0:"";}}}s:19:"preprocessable_bits";a:1:{i:0;a:4:{i:0;a:0:{}i:1;i:4;i:2;s:19:"FRACTIONAL_EDITABLE";i:3;a:0:{}}}s:9:"pure_lang";N;s:8:"codename";s:10:":container";}}i:2;i:2;i:3;s:18:"_DOWNLOAD_CATEGORY";i:4;s:0:"";}}}s:19:"preprocessable_bits";a:1:{i:0;a:4:{i:0;a:0:{}i:1;i:4;i:2;s:19:"FRACTIONAL_EDITABLE";i:3;a:0:{}}}s:9:"pure_lang";b:1;s:8:"codename";s:10:":container";}}i:2;i:1;i:3;s:0:"";i:4;s:0:"";}i:1;a:5:{i:0;s:22:"tcpfunc_SCREEN_TITLE_2";i:1;R:12;i:2;i:1;i:3;s:0:"";i:4;s:0:"";}i:2;a:5:{i:0;s:22:"tcpfunc_SCREEN_TITLE_3";i:1;R:12;i:2;i:1;i:3;s:0:"";i:4;s:0:"";}i:3;a:5:{i:0;s:22:"tcpfunc_SCREEN_TITLE_4";i:1;R:12;i:2;i:1;i:3;s:0:"";i:4;s:0:"";}}}s:19:"preprocessable_bits";a:1:{i:0;a:4:{i:0;a:0:{}i:1;i:4;i:2;s:19:"FRACTIONAL_EDITABLE";i:3;a:0:{}}}s:9:"pure_lang";N;s:8:"codename";s:12:"SCREEN_TITLE";}s:11:"category_id";i:1;s:8:"category";a:9:{s:2:"id";i:1;s:8:"category";s:14:"Downloads home";s:9:"parent_id";N;s:8:"add_date";i:1432422129;s:5:"notes";s:0:"";s:11:"description";s:0:"";s:9:"rep_image";s:0:"";s:24:"description__text_parsed";s:345:"return unserialize("a:5:{i:0;a:1:{i:0;a:1:{i:0;a:5:{i:0;s:40:\"string_attach_556106e9eeb2e3.61389201_20\";i:1;a:0:{}i:2;i:1;i:3;s:0:\"\";i:4;s:0:\"\";}}}i:1;a:0:{}i:2;s:10:\":container\";i:3;N;i:4;a:1:{s:40:\"string_attach_556106e9eeb2e3.61389201_20\";s:69:\"\$tpl_funcs['string_attach_556106e9eeb2e3.61389201_20']=\"echo \\\"\\\";\";\n\";}}"); ";s:24:"description__source_user";i:1;}s:2:"id";N;s:5:"myrow";N;s:4:"name";N;s:4:"root";i:1;s:14:"images_details";N;s:10:"num_images";N;}
Type '->'
Args
File 'C:\\Bitnami\\wampstack-5.5.25-0\\apache2\\htdocs\\demo\\composr\\sources\\zones.php'
Line 744
Function 'run'
Class 'Module_downloads'
Object O:16:"Module_downloads":9:{s:5:"title";O:8:"Tempcode":5:{s:18:"code_to_preexecute";a:4:{s:22:"tcpfunc_SCREEN_TITLE_1";s:675:"$tpl_funcs['tcpfunc_SCREEN_TITLE_1']=$KEEP_TPL_FUNCS['tcpfunc_SCREEN_TITLE_1']=recall_named_function('5561876c52ac05.62630191','$parameters,$cl',"extract(\$parameters,EXTR_PREFIX_ALL,'bound'); echo (isset(\$bound_ID)?(\"\\npure_lang)?str_replace(\$GLOBALS['HTML_ESCAPE_1_STRREP'],\$GLOBALS['HTML_ESCAPE_2'],otp(isset(\$bound_ID)?\$bound_ID:NULL,\"ID/SCREEN_TITLE\")):otp(isset(\$bound_ID)?\$bound_ID:NULL,\"ID/SCREEN_TITLE\")).\"\\\">\\n\"):''),\n \"\\n\\n
\\n \";");";s:22:"tcpfunc_SCREEN_TITLE_2";s:284:"$tpl_funcs['tcpfunc_SCREEN_TITLE_2']=$KEEP_TPL_FUNCS['tcpfunc_SCREEN_TITLE_2']=recall_named_function('5561876c52ac09.88632773','$parameters,$cl',"extract(\$parameters,EXTR_PREFIX_ALL,'bound'); echo otp(isset(\$bound_TITLE)?\$bound_TITLE:NULL,\"TITLE/SCREEN_TITLE\"),\n \"\\n\\n \";");";s:22:"tcpfunc_SCREEN_TITLE_3";s:1996:"$tpl_funcs['tcpfunc_SCREEN_TITLE_3']=$KEEP_TPL_FUNCS['tcpfunc_SCREEN_TITLE_3']=recall_named_function('5561876c52ac03.89622711','$parameters,$cl',"extract(\$parameters,EXTR_PREFIX_ALL,'bound'); echo (isset(\$bound_AWARDS)?(\"\\n \".((otp(isset(\$bound_AWARDS)?\$bound_AWARDS:NULL,\"AWARDS/SCREEN_TITLE\")!='')?(\"\\n \".ecv(\$cl,array(),4,\"SET\",array(\"AWARDS_TEXT\",\"\\n
\".\"Award winner\".\"
\\n

\".ecv(\$cl,array(),2,\"AWARDS_WON\",array(otp(isset(\$bound_AWARDS)?\$bound_AWARDS:NULL,\"AWARDS/SCREEN_TITLE\"))).\"
\\n

    \\n \".closure_loop(array(\"AWARDS\",'vars'=>\$parameters),array(\$parameters,\$cl),\nrecall_named_function('5561876c526d82.47740385','\$parameters,\$cl',\"extract(\\\$parameters,EXTR_PREFIX_ALL,'bound'); return \\\"\\\\n
    \\\\n \\\".(empty(\\\$bound_AWARD_TYPE->pure_lang)?str_replace(\\\$GLOBALS['HTML_ESCAPE_1_STRREP'],\\\$GLOBALS['HTML_ESCAPE_2'],otp(isset(\\\$bound_AWARD_TYPE)?\\\$bound_AWARD_TYPE:NULL,\\\"AWARD_TYPE/SCREEN_TITLE\\\")):otp(isset(\\\$bound_AWARD_TYPE)?\\\$bound_AWARD_TYPE:NULL,\\\"AWARD_TYPE/SCREEN_TITLE\\\")).\\\"\\\\n \\\".ecv(\\\$cl,array(),2,\\\"AWARD_ON\\\",array(ecv_DATE(\\\$cl,array(1),array(\\\"1\\\",\\\"1\\\",\\\"1\\\",otp(isset(\\\$bound_AWARD_TIMESTAMP)?\\\$bound_AWARD_TIMESTAMP:NULL,\\\"AWARD_TIMESTAMP/SCREEN_TITLE\\\"))))).\\\"\\\\n
    \\\\n \\\";\")).\"\\n

\\n \")).\"\\n \\\"\".\"Award\\n \"):'').\"\\n \"):''),\n \"\\n\\n\\n\";");";s:22:"tcpfunc_SCREEN_TITLE_4";s:365:"$tpl_funcs['tcpfunc_SCREEN_TITLE_4']=$KEEP_TPL_FUNCS['tcpfunc_SCREEN_TITLE_4']=recall_named_function('5561876c52ac07.92534939','$parameters,$cl',"extract(\$parameters,EXTR_PREFIX_ALL,'bound'); echo (isset(\$bound_SUB)?(\"\\n
\\n \".otp(isset(\$bound_SUB)?\$bound_SUB:NULL,\"SUB/SCREEN_TITLE\").\"\\n
\\n\"):''),\n \"\\n\";");";}s:9:"seq_parts";a:1:{i:0;a:4:{i:0;a:5:{i:0;s:22:"tcpfunc_SCREEN_TITLE_1";i:1;a:3:{s:5:"_GUID";s:32:"847ffbe4823eca6d2d5eac42828ee552";s:6:"AWARDS";a:0:{}s:5:"TITLE";O:8:"Tempcode":5:{s:18:"code_to_preexecute";a:1:{s:38:"do_runtime_5562af335aa409.97932750_158";s:212:"$tpl_funcs['do_runtime_5562af335aa409.97932750_158']="foreach (\$parameters as \$i=>\$p) { if (is_object(\$p)) \$parameters[\$i]=\$p->evaluate(); } echo ecv(\$cl,array(),2,\"_DOWNLOAD_CATEGORY\",\$parameters);"; ";}s:9:"seq_parts";a:1:{i:0;a:1:{i:0;a:5:{i:0;s:38:"do_runtime_5562af335aa409.97932750_158";i:1;a:1:{i:0;O:8:"Tempcode":5:{s:18:"code_to_preexecute";a:1:{s:38:"do_runtime_5562af335aa409.97932750_157";s:214:"$tpl_funcs['do_runtime_5562af335aa409.97932750_157']="echo ecv(\$cl,array(),4,\"FRACTIONAL_EDITABLE\",array(\"Downloads home\",\"category\",\"_SEARCH:cms_downloads:__edit_category:1\",\"0\",\"Downloads home\"));"; ";}s:9:"seq_parts";a:1:{i:0;a:1:{i:0;a:5:{i:0;s:38:"do_runtime_5562af335aa409.97932750_157";i:1;a:0:{}i:2;i:4;i:3;s:19:"FRACTIONAL_EDITABLE";i:4;s:0:"";}}}s:19:"preprocessable_bits";a:1:{i:0;a:4:{i:0;a:0:{}i:1;i:4;i:2;s:19:"FRACTIONAL_EDITABLE";i:3;a:0:{}}}s:9:"pure_lang";N;s:8:"codename";s:10:":container";}}i:2;i:2;i:3;s:18:"_DOWNLOAD_CATEGORY";i:4;s:0:"";}}}s:19:"preprocessable_bits";a:1:{i:0;a:4:{i:0;a:0:{}i:1;i:4;i:2;s:19:"FRACTIONAL_EDITABLE";i:3;a:0:{}}}s:9:"pure_lang";b:1;s:8:"codename";s:10:":container";}}i:2;i:1;i:3;s:0:"";i:4;s:0:"";}i:1;a:5:{i:0;s:22:"tcpfunc_SCREEN_TITLE_2";i:1;R:12;i:2;i:1;i:3;s:0:"";i:4;s:0:"";}i:2;a:5:{i:0;s:22:"tcpfunc_SCREEN_TITLE_3";i:1;R:12;i:2;i:1;i:3;s:0:"";i:4;s:0:"";}i:3;a:5:{i:0;s:22:"tcpfunc_SCREEN_TITLE_4";i:1;R:12;i:2;i:1;i:3;s:0:"";i:4;s:0:"";}}}s:19:"preprocessable_bits";a:1:{i:0;a:4:{i:0;a:0:{}i:1;i:4;i:2;s:19:"FRACTIONAL_EDITABLE";i:3;a:0:{}}}s:9:"pure_lang";N;s:8:"codename";s:12:"SCREEN_TITLE";}s:11:"category_id";i:1;s:8:"category";a:9:{s:2:"id";i:1;s:8:"category";s:14:"Downloads home";s:9:"parent_id";N;s:8:"add_date";i:1432422129;s:5:"notes";s:0:"";s:11:"description";s:0:"";s:9:"rep_image";s:0:"";s:24:"description__text_parsed";s:345:"return unserialize("a:5:{i:0;a:1:{i:0;a:1:{i:0;a:5:{i:0;s:40:\"string_attach_556106e9eeb2e3.61389201_20\";i:1;a:0:{}i:2;i:1;i:3;s:0:\"\";i:4;s:0:\"\";}}}i:1;a:0:{}i:2;s:10:\":container\";i:3;N;i:4;a:1:{s:40:\"string_attach_556106e9eeb2e3.61389201_20\";s:69:\"\$tpl_funcs['string_attach_556106e9eeb2e3.61389201_20']=\"echo \\\"\\\";\";\n\";}}"); ";s:24:"description__source_user";i:1;}s:2:"id";N;s:5:"myrow";N;s:4:"name";N;s:4:"root";i:1;s:14:"images_details";N;s:10:"num_images";N;}
Type '->'
Args
File 'C:\\Bitnami\\wampstack-5.5.25-0\\apache2\\htdocs\\demo\\composr\\sources\\site.php'
Line 1,087
Function 'load_module_page'
Args

'site/pages/modules/downloads.php'

'downloads'

Tempcode -> ...
File 'C:\\Bitnami\\wampstack-5.5.25-0\\apache2\\htdocs\\demo\\composr\\sources\\site.php'
Line 816
Function 'request_page'
Args

'downloads'

true

NULL

NULL

false

false

Tempcode -> ...
File 'C:\\Bitnami\\wampstack-5.5.25-0\\apache2\\htdocs\\demo\\composr\\site\\index.php'
Line 50
Function 'do_site'
Args

Chris Graham

2015-05-25 16:29

administrator   ~2823

Fixed, but you'll need to re-save the 'Default downloads sort order' option, as it let you set it to an invalid value before.

Adam Edington

2015-05-25 16:33

administrator   ~2825

I didn't actually touch the downloads settings, or select a display order. I just tried loading that page and got the error.

Chris Graham

2015-05-25 16:35

administrator   ~2826

I think just saving the config with the option in was enough, as the default list field value was different to the default config option value. It was all a bit mixed up.

Chris Graham

2015-05-25 16:36

administrator   ~2827

Actually that's a good thing for us to add an automatic test for. We shouldn't be able to accidentally do that ;-).

Issue History

Date Modified Username Field Change