THT Community
Possible CSRF attack detected - Printable Version

+- THT Community (https://thehostingtool.com/forum)
+-- Forum: THT Support (https://thehostingtool.com/forum/forum-7.html)
+--- Forum: THT General Support (https://thehostingtool.com/forum/forum-8.html)
+--- Thread: Possible CSRF attack detected (/thread-1819.html)

Pages: 1 2 3


Possible CSRF attack detected - Eino - 05-06-2012

Every time when I login to ACP, it says that message:
Quote:Possible CSRF attack detected. Please make sure cookies are enabled.

I have fresh install and default theme. I didn't changed anything because I can't login.

Please help. Tried to clear cookies and cache.

RockMelt 0.16.91.385, Windows Seven 64-bit.


RE: Possible CSRF attack detected - djblalock - 05-07-2012

When this happens to me I just clear everything and retry to open it in a new tab and it works just fine


RE: Possible CSRF attack detected - Eino - 05-09-2012

Sorry, it doesn't work. Tried three other computers.


RE: Possible CSRF attack detected - Kevin - 05-09-2012

Is there a csrf-secret.php file in your includes folder? If so is there a secret token in it?


RE: Possible CSRF attack detected - Eino - 05-10-2012

(05-09-2012, 06:56 PM)Kevin Wrote: Is there a csrf-secret.php file in your includes folder? If so is there a secret token in it?

Yes this is copypaste of the code
PHP Code:
<?php $secret "censored"
but I censored the secret token so it remains secret.


RE: Possible CSRF attack detected - Kevin - 05-12-2012

Can you PM me a link to your admin cp?


RE: Possible CSRF attack detected - Kevin - 05-13-2012

Got the ACP link. This is an extremely odd error. On the client side, everything looks right...


RE: Possible CSRF attack detected - Eino - 05-14-2012

(05-13-2012, 01:29 PM)Kevin Wrote: Got the ACP link. This is an extremely odd error. On the client side, everything looks right...

Hope you can found fix to it. I really need THT. Confused


RE: Possible CSRF attack detected - Kevin - 05-19-2012

I'm really not sure what the issue is as I haven't been able to replicate it on my own servers. The best thing you can do is disable CSRF protection. Sad It might be a PHP cookie / session saving configuration issue on the server.


RE: Possible CSRF attack detected - kylemassacre - 06-04-2012

I just installed this today and i am getting the same error, i dont know exactly where to go to disable the protection and i do have a key in the csrf-secret.php file. Any help would be great