Oracle Posted September 29, 2022 Posted September 29, 2022 This is all I see when I try to go to my website I get.... array(1) { ["started"]=> bool(true) } I have no idea what file that is in I been looking through each file. I can't find the code that is screwing up login the front page is just array(1) { ["started"]=> bool(true) } on a white page with nothing else when I go to my website. Quote
SRB Posted September 29, 2022 Posted September 29, 2022 Since you're on the MCCodes forum, I'm going to assume you have MCCodes which has no front end controller. That leads me to believe you have a var_dump() function being called in login.php - if not login.php, it's possible it's including globals.php or global_func.php, so check those too. Quote
Oracle Posted September 29, 2022 Author Posted September 29, 2022 thank you much ! 13 hours ago, SRB said: Since you're on the MCCodes forum, I'm going to assume you have MCCodes which has no front end controller. That leads me to believe you have a var_dump() function being called in login.php - if not login.php, it's possible it's including globals.php or global_func.php, so check those too. I checked all three folders im not finding it var_dump() . now im getting this array(2) { ["started"]=> bool(true) ["csrf_login"]=> array(2) { ["token"]=> string(32) "c1b75d63ad7754011902166bdcf48d92" ["issued"]=> int(1664471762) } } Quote
SRB Posted September 29, 2022 Posted September 29, 2022 (edited) I might be wrong here, but I don't recall MCCodes every coming with CSRF protection by default. I stand by my thoughts though, even if the location is wrong - you have a var_dump() call somewhere in your code. Do you use GitHub or BitBucket for version control? Do you have access to SSH? If you have SSH access, jump into terminal and go to the root of your project and run this command: grep -R 'var_dump' . That should give you output in the format similar to: ./filename.php: var_dump($whatever) Edited September 29, 2022 by SRB Spelling: root not route Quote
Oracle Posted September 29, 2022 Author Posted September 29, 2022 awesome thanks.... no i don't have access to that. but still looking for the var dump lol Quote
SRB Posted September 29, 2022 Posted September 29, 2022 PM me your discord and I'll add you and try help. Quote
AdamHull Posted September 29, 2022 Posted September 29, 2022 (edited) I will help you remove it, possibly tomorrow Edited September 29, 2022 by AdamHull Quote
Dayo Posted September 30, 2022 Posted September 30, 2022 If you are editing locally on myr machine you can do a find in files search for var_dump, also i think cPanel and plesk have this feature too Quote
newttster Posted October 2, 2022 Posted October 2, 2022 CSRF is not a built in of McCodes. The long number after string 32 is part of your config file. You might want to hide that number, it's your security code (best way that I can describe it) for your cron jobs. It's basically a key code. Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.