Mobile Legends: Bang Bang

 Forgot password?
 Register now.
12Next
Return to list New
View: 184|Reply: 12
Collapse the left

[Other Bug Report] Emergency!!

[Copy link]
Post time 2019-1-12 11:04 PM From mobile phone | Show all posts |Read mode

Sign up now, Make more friends, Enjoy with more features, Let you easily Fun Community.

You have to Login for download or view attachment(s). No Account? Register

x
Edited by yutsumong at 2019-1-12 11:28 PM

So I was doing a survey and on redirecting your site's error popped up showing all the sites details.

I don't know if its serious, but the site's password and login of databases is exposed.
Also the access tokens and secret keys of external websites is shown too.

I don't think its good to expose such info to people.

Wouldn't it be good to turn off showing of error in your website's framework configuration?
(It shows yii is the framework)

It happened because the rows are exceeding the limit.
And you should disable the framework's error reporting as sensitive data is exposed
Screenshot_20190112-202823.png
Post time 2019-1-13 05:05 PM | Show all posts
Well its an error.
No crucial information is showed here as you have mentioned.
Please submit this ss to in game cs and we will submit this too.
Thanks.
Post time 2019-1-13 03:33 AM | Show all posts
Maybe the site is broken. Will look into and forward this to our devs , and help fix asap. Ty for the concern.
Post time 2019-1-12 11:15 PM | Show all posts
ya that happened to me to
Post time 2019-1-12 11:38 PM | Show all posts
This happened to me too.. received 3 surveys in total from yesterday and today.. i did all of them, but after each one, that appeared.. is it safe for me???? Ive done the surveys already..............
Post time 2019-1-13 02:14 AM From mobile phone | Show all posts
something went wrong with the send of the surveys, there is no exposed data, but such thing should not happen with a good website.
Post time 2019-1-13 03:56 AM | Show all posts
based from your screenshot.

None of them displayed sensitive data or information.
It's just a debugging message that i believe should have wrapped into a redirecting page if it's down.

Nothing to worry about.

Comments

That's what i have said to wrap debugging messages into a page redirection like a maintenance or a warning page :)  Post time 2019-1-13 09:09 AM
still they should still hide the debugging text  Post time 2019-1-13 04:29 AM
 Author| Post time 2019-1-13 10:13 AM From mobile phone | Show all posts
batuzai04123 replied at 2019-1-13 03:56 AM
based from your screenshot.

None of them displayed sensitive data or information.

This is short.
I know its not a big deal but wechat's api information is shown.
DB access information is shown though this is okay as indirect access must've been disabled by the devs.

And also who enables error reporting on a active site?
 Author| Post time 2019-1-13 10:20 AM From mobile phone | Show all posts
seimz replied at 2019-1-13 03:33 AM
Maybe the site is broken. Will look into and forward this to our devs , and help fix asap. Ty for th ...

Thanks for the concern, regarding the problem
Its arising because of row size
Changing the limit of rows, or disabling strict mode in mysql or reducing the number of fields might help.
Post time 2019-1-13 10:22 AM | Show all posts
Edited by batuzai04123 at 2019-1-13 10:43 AM
yutsumong replied at 2019-1-13 10:13 AM
This is short.
I know its not a big deal but wechat's api information is shown.
DB access informat ...

None of the error message shows sensitive data like usernames or passwords, it's just an sql insert data with just column names aunless u show us the whole log where i believe it will be truncated.
anyway, u shouldn't be worried at the first place coz it's just a survey page.
Can u elaborate more what did u enter on the survey form? Did u include your usernames/emails with passwords?/bank accounts,personal accounts etc?

If none then u shouldnt' be worried at the first place. A survey is just a survey, and wechat api can be used publicly by anyone, let MOONTON handle this issue as it's just a survey page.

Just report it to CS so they can have ample time to fix this.





12Next
Return to list New
You have to log in before you can reply Login | Register now.

Points Rules

Mobile Phone Version|Dark Room|Mobile Legends: Bang Bang Official Forum

2019-1-23 03:45 AM GMT+8

Powered by Discuz! X3.4

© 2001-2013 Comsenz Inc.

Quick Reply To Top Return to the list