Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
V
V
Vitaliy Semyanchuk2014-01-28 11:23:48
Kohana
Vitaliy Semyanchuk, 2014-01-28 11:23:48

Kohana Session_exception[1] - error reading session data?

Good afternoon.
Here is the problem, when checking my site for vulnerabilities, one of the programs, namely the Burp suite,
gave an error Session_exception[1] - error reading session data, and under it there is a bunch of source code.
This all happened due to the fact that Burp suite passes session='../../../../etc/paswd' to any page.
So I want to ask how dangerous it is, and how to make the kohana ignore such sessions?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
V
Vit, 2014-01-28
@fix20152

The test program attempted to read a file that cannot be read. Kohana honestly gave a reading error - this is normal. On the contrary, it would be bad if your site gave the attacker the contents of /etc/passwd

Similar questions
Y
Y Kulan2015-11-27 18:26:07
In the framework - kohana how to send a page newsletter? 0Reply
M
Mishcake2020-05-23 10:41:02
How to change password in Kohana framework? 2Reply
G
green1762015-01-03 14:41:01
How to transfer kohana website from hosting to localhost? 0Reply
A
Anton2021-08-25 08:06:06
How to display subcategories of a category? 1Reply
A
Anton2018-06-07 09:24:06
Photo processing when uploading to the site, optimal compression quality, what percentage? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question