- Posts: 83
- Thank you received: 3
Invisible ReCaptcha V3 and missing required field triggers hacker attack warning
- azurelinksc
- Topic Author
- Offline
- Premium Member
-
Less
More
1 year 2 months ago #9236
by azurelinksc
Invisible ReCaptcha V3 and missing required field triggers hacker attack warning was created by azurelinksc
Hola Jose,
I am also having an issue with a warning message on an RSForm! Pro form which says, "A sequence has been detected that could mean a hacker attack. Your request cannot be processed."
I tested the form with all fields completed and it submitted fine. Then I tested it with a required field empty (Phone) and got that warning message. The SCP firewall log record says, "Line comments :[POST:form] ".
I should mention that this problem seems to have started after I installed and enabled Google Invisible ReCaptcha 3.
I then disabled the Invisible ReCaptcha 3 plugin and did the following two test submits:
1. Form test with required Phone field empty — Got the RSForm! Pro (which I created) "This is a required field."
2. Form test with required Phone field completed — Form submitted properly and redirected to Thank You page.
So it would maybe SCP and Invisible ReCaptcha V3 are not playing well together? Maybe Invisible ReCaptcha v3 is creating code that triggers SCP? Is the first warning text about the "hacker attack" from SCP or Google?
is that warning message from Google or SCP? (I'd like to edit it if there isn't a workaround.)
I am also having an issue with a warning message on an RSForm! Pro form which says, "A sequence has been detected that could mean a hacker attack. Your request cannot be processed."
I tested the form with all fields completed and it submitted fine. Then I tested it with a required field empty (Phone) and got that warning message. The SCP firewall log record says, "Line comments :[POST:form] ".
I should mention that this problem seems to have started after I installed and enabled Google Invisible ReCaptcha 3.
I then disabled the Invisible ReCaptcha 3 plugin and did the following two test submits:
1. Form test with required Phone field empty — Got the RSForm! Pro (which I created) "This is a required field."
2. Form test with required Phone field completed — Form submitted properly and redirected to Thank You page.
So it would maybe SCP and Invisible ReCaptcha V3 are not playing well together? Maybe Invisible ReCaptcha v3 is creating code that triggers SCP? Is the first warning text about the "hacker attack" from SCP or Google?
is that warning message from Google or SCP? (I'd like to edit it if there isn't a workaround.)
Please Log in or Create an account to join the conversation.
- Jose
-
- Offline
- Administrator
-
Less
More
- Posts: 4764
- Thank you received: 357
1 year 2 months ago #9237
by Jose
Replied by Jose on topic Invisible ReCaptcha V3 and missing required field triggers hacker attack warning
Hola azurelink!
The "line comments" filter can cause false positives like this, so you have to add the extension reported in the log as exception (just select the log and click on the add exception button). This will solve your issue.
Take note that this issue will not always arise; it depends of the Google recaptcha field sent (that changes on every refresh).
Regards,
Jose
The "line comments" filter can cause false positives like this, so you have to add the extension reported in the log as exception (just select the log and click on the add exception button). This will solve your issue.
Take note that this issue will not always arise; it depends of the Google recaptcha field sent (that changes on every refresh).
Regards,
Jose
Please Log in or Create an account to join the conversation.
- azurelinksc
- Topic Author
- Offline
- Premium Member
-
Less
More
- Posts: 83
- Thank you received: 3
1 year 2 months ago #9238
by azurelinksc
Replied by azurelinksc on topic Invisible ReCaptcha V3 and missing required field triggers hacker attack warning
Thanks for your quick reply, Jose.
I always worry that if I add extensions as exceptions, does this mean that SCP is no longer monitoring the activity (of the form, in this case) and it can therefore be hacked?
I always worry that if I add extensions as exceptions, does this mean that SCP is no longer monitoring the activity (of the form, in this case) and it can therefore be hacked?
Please Log in or Create an account to join the conversation.
- Jose
-
- Offline
- Administrator
-
Less
More
- Posts: 4764
- Thank you received: 357
1 year 2 months ago #9239
by Jose
Replied by Jose on topic Invisible ReCaptcha V3 and missing required field triggers hacker attack warning
You're welcome!
Adding a component as exception doesn't affect the security as if there is a vulnerability reported for it the exception will be ignored. And in this case the 'line comments' filter is part of the 'sql injection' protection, that has other filters to protect against that kind of attacks.
Regards,
Jose
Adding a component as exception doesn't affect the security as if there is a vulnerability reported for it the exception will be ignored. And in this case the 'line comments' filter is part of the 'sql injection' protection, that has other filters to protect against that kind of attacks.
Regards,
Jose
Please Log in or Create an account to join the conversation.
Time to create page: 0.166 seconds
Copyright © 2023 Securitycheck Extensions. All Rights Reserved.
This site is not affiliated with or endorsed by the Joomla! Project. It is not supported or warranted by the Joomla! Project or Open Source Matters. The Joomla! logo is used under a limited license granted by Open Source Matters, the trademark holder in the United States and other countries.
We may collect your IP address and your browser's User Agent string while using our site for security reasons. This information is retained only until we check you're not trying to hack our website.