- Posts: 83
- Thank you received: 3
SQL pattern detected :[POST:text] - Shortcodes Ultimate Plugin, other?
- azurelinksc
- Topic Author
- Offline
- Premium Member
-
Less
More
1 year 2 months ago - 1 year 2 months ago #9322
by azurelinksc
SQL pattern detected :[POST:text] - Shortcodes Ultimate Plugin, other? was created by azurelinksc
Hola Jose,
My admins keep triggering the firewall with the following error:
SQL pattern detected :[POST:text]
They are using the Shortcuts Ultimate plugin to create pages which uses square brackets to surround tags for for creating various elements in articles:
Examples:
[countdown count_date="2022/06/08" count_time="015:00:00" count_size="34" text_size="16" padding="10" margin="20px"]
[row divider="yes"]
My admins keep triggering the firewall with the following error:
SQL pattern detected :[POST:text]
They are using the Shortcuts Ultimate plugin to create pages which uses square brackets to surround tags for for creating various elements in articles:
Examples:
Warning: Spoiler!
[countdown count_date="2022/06/08" count_time="015:00:00" count_size="34" text_size="16" padding="10" margin="20px"]
[row divider="yes"]
-
[heading style="5" heading="h2" size="32"]UPCOMING TRAININGS[/heading]
[post_block source="k2-category: 33,67" limit="2" show_thumb="no" order_by="asc"]
[calltoaction title="Title Text (ABC) More text" align="center" title_color="#fff" button_text="CLICK HERE TO VISIT" button_link="/link/page.html" target="blank" button_background="#026c8c" color="#fff" background="#007297"]
Would this sort of syntax trigger the SCP firewall?
Last edit: 1 year 2 months ago by azurelinksc.
Please Log in or Create an account to join the conversation.
- Jose
-
- Offline
- Administrator
-
Less
More
- Posts: 4862
- Thank you received: 366
1 year 2 months ago #9323
by Jose
Replied by Jose on topic SQL pattern detected :[POST:text] - Shortcodes Ultimate Plugin, other?
Hola azurelink!
Yes, a code like that will launch the SQL injection filter as there are some words used in this kind of attacks (in this code, 'order_by' and 'limit'). In cases like this is difficult to determine if we're under attack or not...
Regards,
Jose
Yes, a code like that will launch the SQL injection filter as there are some words used in this kind of attacks (in this code, 'order_by' and 'limit'). In cases like this is difficult to determine if we're under attack or not...
Regards,
Jose
Please Log in or Create an account to join the conversation.
- azurelinksc
- Topic Author
- Offline
- Premium Member
-
Less
More
- Posts: 83
- Thank you received: 3
1 year 2 weeks ago #9355
by azurelinksc
Replied by azurelinksc on topic SQL pattern detected :[POST:text] - Shortcodes Ultimate Plugin, other?
It happened again. What should I do? Exclude com_k2? Which is where the Shortcodes are being used, Or exclude the plugin itself? Or both? And this is happening in the backend when trying to save a K2 Item.
Please Log in or Create an account to join the conversation.
- Jose
-
- Offline
- Administrator
-
Less
More
- Posts: 4862
- Thank you received: 366
1 year 2 weeks ago #9356
by Jose
Replied by Jose on topic SQL pattern detected :[POST:text] - Shortcodes Ultimate Plugin, other?
Hi azurelink,
Yes, add the component involved as exception.
Let me explain how the firewall works: it checks any html tag, words used in SQL or xss attacks... Sometimes those html tags or the other words are used in some extensions, so we must tell the firewall that there is no problem with that because this have been done by us. Once the firewall is configured for each site you will not be disturbed anymore, but the firewall will be protecting our site.
There is nothing bad adding exceptions.
Regards,
Jose
Yes, add the component involved as exception.
Let me explain how the firewall works: it checks any html tag, words used in SQL or xss attacks... Sometimes those html tags or the other words are used in some extensions, so we must tell the firewall that there is no problem with that because this have been done by us. Once the firewall is configured for each site you will not be disturbed anymore, but the firewall will be protecting our site.
There is nothing bad adding exceptions.
Regards,
Jose
Please Log in or Create an account to join the conversation.
- Jose
-
- Offline
- Administrator
-
Less
More
- Posts: 4862
- Thank you received: 366
1 year 2 weeks ago #9357
by Jose
Replied by Jose on topic SQL pattern detected :[POST:text] - Shortcodes Ultimate Plugin, other?
Anyway there is a way to exclude groups of rules:
scpdocs.securitycheckextensions.com/conf...ion/rules_management
I don't recommend it for super user accounts but you can use this method if you don't like being disturbed by those false positives.
Regards,
Jose
I don't recommend it for super user accounts but you can use this method if you don't like being disturbed by those false positives.
Regards,
Jose
The following user(s) said Thank You: azurelinksc
Please Log in or Create an account to join the conversation.
- azurelinksc
- Topic Author
- Offline
- Premium Member
-
Less
More
- Posts: 83
- Thank you received: 3
1 year 1 week ago #9365
by azurelinksc
Replied by azurelinksc on topic SQL pattern detected :[POST:text] - Shortcodes Ultimate Plugin, other?
So to be clear, even if a component is excluded visitors viewing those K2 Items in a browser will not be able to attempt to inject SQL code into the URL or other input fields?
Please Log in or Create an account to join the conversation.
Time to create page: 0.254 seconds
Copyright © 2023 Securitycheck Extensions. All Rights Reserved.
This site is not affiliated with or endorsed by the Joomla! Project. It is not supported or warranted by the Joomla! Project or Open Source Matters. The Joomla! logo is used under a limited license granted by Open Source Matters, the trademark holder in the United States and other countries.
We may collect your IP address and your browser's User Agent string while using our site for security reasons. This information is retained only until we check you're not trying to hack our website.