Mike101za Posted December 28, 2017 Share Posted December 28, 2017 Hi, I have installed Cubecart. I am now trying to set up. However, the following happens on almost everything I do: Security Alert: Possible Cross-site request forgery (CSRF) or Browser back button used. I the redo the whole operation and nothing happens. Maybe every fourth time of doing the same thing, I get the blue bar to say ie: logo uploaded. However no logo displays on the store. Or Category updated, yet the category does not appear. Thank you Mike Quote Link to comment Share on other sites More sharing options...
bsmither Posted December 28, 2017 Share Posted December 28, 2017 Welcome Mike101za! Glad to see you made it to the forums. There could be an issue with how PHP has been installed, or one or more of its settings. Is your site being hosted by a hosting company? Generally, a CSRF warning happens when the "security token" in the POSTed data does not match what CubeCart thinks it should be. So, either: * you had more than one window open, POSTed a form from the first window, switched to the other window, and POSTed the form from that window (or browser tab). * for some reason, the "security token", which is always the last form element in the POSTed collection of variables, gets lost or discarded by the time PHP gives that data collection to the script. Your browser may be not including it (never seen that happen, but with Chrome, who knows), the web server may have an extraordinarily low amount of bytes it will allow in the POST payload, PHP may have a weirdly low limit for the quantity of POST data, or something else. Quote Link to comment Share on other sites More sharing options...
Mike101za Posted December 28, 2017 Author Share Posted December 28, 2017 1 hour ago, bsmither said: Welcome Mike101za! Glad to see you made it to the forums. There could be an issue with how PHP has been installed, or one or more of its settings. Is your site being hosted by a hosting company? Generally, a CSRF warning happens when the "security token" in the POSTed data does not match what CubeCart thinks it should be. So, either: * you had more than one window open, POSTed a form from the first window, switched to the other window, and POSTed the form from that window (or browser tab). * for some reason, the "security token", which is always the last form element in the POSTed collection of variables, gets lost or discarded by the time PHP gives that data collection to the script. Your browser may be not including it (never seen that happen, but with Chrome, who knows), the web server may have an extraordinarily low amount of bytes it will allow in the POST payload, PHP may have a weirdly low limit for the quantity of POST data, or something else. Hi, Yes it is being hosted. Does this mean I cannot use Cubecart? Mike Quote Link to comment Share on other sites More sharing options...
bsmither Posted December 28, 2017 Share Posted December 28, 2017 We would ask that some consideration be given to having your hosting provider get involved and answer some questions regarding any extraordinarily low limits on web server and/or PHP settings. Settings that might affect what kind of data or how much data can be POSTed to CubeCart. CubeCart can operate in many kinds of hosting packages - but probably not overly restrictive (memory, mod_security rules, etc) or have any sort of super-aggressive page caching mechanism. Quote Link to comment Share on other sites More sharing options...
Nebojsa Posted February 13, 2018 Share Posted February 13, 2018 I have same problem. CubeCart hosted on localhost, installed XAMPP 7.1.13. Browsers Microsoft Edge, IE, Google Chrome issue always after logging CSRF. Mozilla Firefox never issue, all working correct. It become little traumatical. Same error happen if login as admin or as customer. For now in testing phase I shoud work just over Firefox, but it not acceptable. Does anybody can help and offer solution. Thanks Quote Link to comment Share on other sites More sharing options...
Mike101za Posted February 13, 2018 Author Share Posted February 13, 2018 Hi, I contacted my ISP and they changed my Web PHP settings: Below is what they say they did and it is working very well now. Quote Link to comment Share on other sites More sharing options...
Nebojsa Posted February 13, 2018 Share Posted February 13, 2018 3 hours ago, Mike101za said: Hi, I contacted my ISP and they changed my Web PHP settings: Below is what they say they did and it is working very well now. Hi, nothing see below, can you send me on private mail. Thanks. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.