Jump to content

Possible CSRF Attack


Highway Rider

Recommended Posts

  • 3 weeks later...

I am also getting this error - cannot login to ADMIN and users cannot login - Clean Install, Problem only in IE ?

Tested successfully with simultaneous logins to the same admin account from Safari, Firefox and Opera ?

Ok can live with it on local systems but will be a problem when store gore into production ?

 

There's nothing in the request logs ..

 

Upgraded to 6.0.7, using firefox.

 

Tried to access store admin using IE - same problem ?

Problem is that if its a server problem why is it allowed through non-IE browsers ?

I have tried BillSmithers fix but it does not work for me ?

 

 

 

Edited by ChrisColeman
Update
Link to comment
Share on other sites

After having added those extra statements in the global.inc.php file, Chrome still does not work for you on a local system?

(I don't use Chrome, but) I understand there is a Developer's Panel in Chrome. Please use it to make sure Chrome is sending back the correct cookies.

 

Link to comment
Share on other sites

  • 2 weeks later...

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
×
  • Create New...