System.WEb Error Log - General Support

Welcome Guest! To enable all features please Login or Register.

Notification

Error

BV Commerce Forum » BV Commerce Support » General Support » System.WEb Error Log

System.WEb Error Log

Options

Previous Topic Next Topic

sternyy		#1 Posted : Thursday, January 22, 2009 10:22:49 AM(UTC)
Rank: Member Joined: 1/10/2005(UTC) Posts: 714 Thanks: 14 times Was thanked: 1 time(s) in 1 post(s)		I've noticed in my error log i get this a lot... any clue?: A potentially dangerous Request.Form value was detected from the client (ctl00$MainContentHolder$QuantityField="<a ").[ at System.Web.HttpRequest.ValidateString(String s, String valueName, String collectionName) at System.Web.HttpRequest.ValidateNameValueCollection(NameValueCollection nvc, String collectionName) at System.Web.HttpRequest.get_Form() at System.Web.HttpRequest.get_HasForm() at System.Web.UI.Page.GetCollectionBasedOnMethod(Boolean dontReturnNull) at System.Web.UI.Page.DeterminePostBackMode() at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) at System.Web.UI.Page.ProcessRequest(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint) at System.Web.UI.Page.ProcessRequest() at System.Web.UI.Page.ProcessRequestWithNoAssert(HttpContext context) at System.Web.UI.Page.ProcessRequest(HttpContext context) at ASP.bvmodules_producttemplates_bvc_2004_layout_product_aspx.ProcessRequest(HttpContext context) at System.Web.HttpApplication.CallHandlerExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute() at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously) ]


User Profile View All Posts by User View Thanks

Matt@9BallDesign		#2 Posted : Thursday, January 22, 2009 12:34:12 PM(UTC)
Rank: Member Joined: 12/23/2003(UTC) Posts: 909		I think that's what you get when somebody or something is trying to add HTML to your form fields.
		Matt Martell http://www.9balldesign.com - Web, Print, Graphic http://www.martellhardware.com/ - Decorative & Builder's Hardware ------------------------------------------------


User Profile View All Posts by User View Thanks

sternyy		#3 Posted : Thursday, January 22, 2009 6:14:12 PM(UTC)
Rank: Member Joined: 1/10/2005(UTC) Posts: 714 Thanks: 14 times Was thanked: 1 time(s) in 1 post(s)		thats what i thought it looked like. Its weird because ive been getting it about 30 - 40 times a day for the past few days.


User Profile View All Posts by User View Thanks

Marcus		#4 Posted : Thursday, January 22, 2009 6:43:05 PM(UTC)
Rank: Member Joined: 11/5/2003(UTC) Posts: 1,786		Could be someone attempting a cross site scripting attack to inject a spam link. Probably an automated bot.


User Profile View All Posts by User View Thanks

PeterP		#5 Posted : Thursday, January 22, 2009 9:42:41 PM(UTC)
Rank: Member Joined: 9/17/2008(UTC) Posts: 22		So does that mean there is no concern as BV has covered this possible error or is there something we need to do?


User Profile View All Posts by User View Thanks

[email protected]		#6 Posted : Saturday, January 24, 2009 10:22:43 AM(UTC)
Rank: Member Joined: 1/17/2007(UTC) Posts: 69		we're seeing these same errors in our event logs. Looks like a bot and it looks like it went away.


User Profile View All Posts by User View Thanks

bvcoder		#7 Posted : Saturday, January 24, 2009 12:16:46 PM(UTC)
Rank: Member Joined: 8/1/2007(UTC) Posts: 310		You dont have to do anything about it unless if you are facing the problem yourself in which case you might want to disallow Request Validation for that specific page by adding RequestValidation="false" in the Page directive.
		Thanks, Satya support @ bayquel.net Work: +1 803 883 3226


User Profile View All Posts by User View Thanks

Forum Jump

You cannot post new topics in this forum.
You cannot reply to topics in this forum.
You cannot delete your posts in this forum.
You cannot edit your posts in this forum.
You cannot create polls in this forum.
You cannot vote in polls in this forum.