[Koha-bugs] [Bug 15820] suggestion.pl maximum internal redirects

bugzilla-daemon at bugs.koha-community.org bugzilla-daemon at bugs.koha-community.org
Thu Feb 25 15:01:13 CET 2016 

https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=15820

Humberto Blanco <hblancoca at gmail.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
           Severity|normal                      |critical

--- Comment #6 from Humberto Blanco <hblancoca at gmail.com> ---
(In reply to Jonathan Druart from comment #5)
> Are you using the default Koha Apache configuration file?

jonathan: Yes, I attached this. for koha exist 3 diferent files for apache



For example, when i try to change status for a suggestion  
http://10.10.11.220:8080/cgi-bin/koha/suggestion/suggestion.pl#ASKED

Appears: 
Internal Server Error
The server encountered an internal error or misconfiguration and was unable to
complete your request.
Please contact the server administrator at [no address given] to inform them of
the time this error occurred, and the actions you performed just before this
error.
More information about this error may be available in the server error log.
Additionally, a 500 Internal Server Error error was encountered while trying to
use an ErrorDocument to handle the request.

Aditional in apache logs appears 
[Thu Feb 25 08:59:41 2016] -e: CGI::param called in list context from package
ModPerl::ROOT::ModPerl::Registry::usr_share_koha_intranet_cgi_2dbin_suggestion_suggestion_2epl
line 80, this can lead to vulnerabilities. See the warning in "Fetching the
value or values of a single named parameter" at /usr/share/perl5/CGI.pm line
436, <DATA> line 751.
[Thu Feb 25 08:59:41 2016] -e: CGI::param called in list context from package
C4::Auth line 399, this can lead to vulnerabilities. See the warning in
"Fetching the value or values of a single named parameter" at
/usr/share/perl5/CGI.pm line 436, <DATA> line 751.
[Thu Feb 25 08:59:41 2016] -e: No suggestions ACCEPTED letter transported by
email at /usr/share/koha/lib/C4/Letters.pm line 636, <DATA> line 751.
[Thu Feb 25 08:59:41 2016] -e: CGI::param called in list context from package
ModPerl::ROOT::ModPerl::Registry::usr_share_koha_intranet_cgi_2dbin_suggestion_suggestion_2epl
line 80, this can lead to vulnerabilities. See the warning in "Fetching the
value or values of a single named parameter" at /usr/share/perl5/CGI.pm line
436.


Before i see and the status of the suggestion has changed, i believe that is
letter

-- 
You are receiving this mail because:
You are watching all bug changes.
You are the assignee for the bug.

More information about the Koha-bugs mailing list