This happened lately on xoops.org. I just wanted to inform a person in charge of a possible attack vector that was reported by Protector. I copied the message and put them into quotes and send it via PM.

Protector thought this was an attack (happens also with CBB). Maybe the error messages should be specially reformatted to be easily copied and distributed within XOOPS?

Any ideas?

hi franki.

As I rarely visit xoops.org, I don't know the setting of the site at all.

Which kind of error messages are displayed?

XSS?
SQL Injection?

You can send the content via PM of this site.

In fact, protector can be overcautions upon its setting.
But I can also say that overcautions might be better than without cautions.

The attack was ISOCOM and I sent you a PM with the message. Seems to be no problem here. So it must be a setting on xoops.org I assume.

hi franki.

ISOCOM?

It sounds just an issue that xoops.org sets the Protector too sensitive.

Just set them "Sanitizing" or "None".
"Action if an isolated comment-in is found"
"Action if a UNION is found"

This is not a problem of Protector but the site.
Claim it to the administrator of the site.


And, Protector has already moved into "DBLayer Anti SQL Injection".
Both "ISOCOM" or "UNION" were older and useless way, now.

Thx for support, I'll pass the information to the administrator.

You shouldn't copied the message and putting them into quotes and sending it via PM is ought to be treated as an attack. Yes administrator must be informed.