Vulnerability - settings of the browser application are visible to the Post method
HelloI am facing problem with parameters that are passed to the submit method. Not sure why parameters are passed to the jsp even after using to introduce the method in form. Here is the code snippet. Hope someone could help me in this regard. Thanks in advance.
1.
< name dsp:form = "Save" action = "< % = request.getRequestURI ()" % > " method ="POST" onsubmit =" ">"
< dsp:input bean = "RegisterFormHandler.createSuccessURL" type = "hidden" value = "notification_message.jsp" / > "
< dsp:input bean = "RegisterFormHandler.createErrorURL" type = "hidden" value = "register.jsp" / > "
2.
< dsp: select type = "text" name = 'Hi' bean = "RegisterFormHandler.value.gtwySalutation" >
< INPUT size is 32 border = 0 name is "AccountName" >
I need resolution such as settings, such as the slauation and the account name should be passed without display in the browser
https://gdd.ca.com/commerce/profile/register.jsp?AccountName=admin & saluation = mr.
waiting for answers. Thanks in advance
Kind regards
Mohammed.
If you set the method of form as being the only way you get get this URL is when you create the success or error URL with parameters.
Check the handful of RegisterFormHandler method to ensure that it does not add the parameters in the URL. You can also check the method RegisterFormHandler.getCreateErrorUrl () and createSuccessUrl().
Tags: Oracle Applications
Similar Questions
-
Help! Weird question CF 9.02 when "in many" form fields are displayed in the 'post' method
So we just installed cf9.02 64-bit on windows 2003 server machines brand new and migrated all code on and we have encountered in the wierdest (and very dead on the water) deliver, any display of a templae to FC with a "large" amount of fields using the method = "post" vomits, works well with the method = 'get' or with a small amount of fields. Here are some examples of 'base' I pulled out of our application:https://dev1.mystudentsprogress.com/testposting/smallform.html -> it is method = 'post' and works well with a small number of fields, click on save and he called a CF model that simply says "index.cfm here."
https://dev1.mystudentsprogress.com/testposting/formget.html -> it is method = 'get' and also works very well, click on save and then he calls a CF model that simply says "index.cfm here."
https://dev1.mystudentsprogress.com/testposting/FormPost.html -> This is the method = 'post' and it barfs, click on save and you get a 500 error page
And once this is the case that the 'next' call to even pages succesfull returns a blank page or go here:
https://dev1.mystudentsprogress.com/testposting/smallform.html and click on save
Go here again, and then click Save:
https://dev1.mystudentsprogress.com/testposting/smallform.html
.. There is nothing in any of the newspapers CF indicating any kind of errors, it's just flat barfs on forms with the post method and a large amount of fields, clearly a MAJOR issue because our app has a lot ot screens with a lot of fields!You could investigate the postParametersLimit and postSizeLimit values in file neo - runtime.xml of your server. I suspect you'll need to increase the values of these two parameters. Remember to save this file before making any changes. You will need to restart the CF server to apply the changes to the settings in this file.
See FC 9.0.2 release notes for more information: http://helpx.adobe.com/coldfusion/release-note/coldfusion-9-0-update-2.html
-
How to send images and a single parameter to the server by using the POST method. ?
Hey
I want to send images and a single parameter to the server by using the POST method.
Please help me.
Vaishali, take a look at this-
http://developer.Nokia.com/community/wiki/HTTP_Post_multipart_file_upload_in_Java_ME
Thank you.
-
Hello
I need to send an image on the server using the post method.
I connect using Http, like this:
HttpConnection _http = (HttpConnection) Connector.open (address);
can someone provide an example of how can I use a post method to send the data to the server?
Kind regards
I solved the problem. Here is my code, which works:
Bitmap _bitmap = new Bitmap(Display.getWidth(), Display.getHeight()); Display.screenshot(_bitmap); JPEGEncodedImage _jpg = JPEGEncodedImage.encode(_bitmap, 20); DataBuffer _db = new DataBuffer(); _db.write(_jpg.getData()); _http = (HttpConnection) Connector.open(_url, Connector.READ_WRITE); _http.setRequestMethod("POST"); _http.openOutputStream().write(_db.toArray()); _http.getResponseCode();Kind regards
-
11.1.2.1 - calculation Manager - no. planning applications are visible
Problem: Cannot create a rule calcmgr for newly created EPMA, planning an application.
Version: Hyperion 11.1.2.1
Default calculation module is Manager of calculation.
After you create a new demand for labour EPMA (using App Wizard), I launched CalcMgr to create a new rule. My new Plan app (MCBUDD) does not show upward when you are prompted for a planning Application. In system view, no application is visible in the planning. Discount had no effect.
We tried to start slaughter/CalcMgr, but this has no effect.
Any help would be appreciated.This problem is caused in a distributed environment, where the Calc Manager is not a basic EPMA files that are required to view planning applications.
Use the following steps to resolve this problem:
1. check if the folder
\EPMSystem11R1\common\bpmui-common\11.1.2.0 exist in the server computer where Calc Manager is installed and configured. If the folder does not exist, please copy this folder from the server where the Dimension of EPMA server is installed. 2. check if the folder
\EPMSystem11R1\common\Axis exist in the system where Calc Manager is installed and configured, or copy the same folder on the server where the Dimension EPMA server is installed 3. restart the service manager of Calc.
Check "Calc Manager Does not display any planning application (Doc ID 1340404.1)" on my Support of Oracle.
HTH-
Jasmine. -
Redirect to another page with parameter passing using the POST method
Hello
I need to redirect to another page and pass parameters to it with the POST (not GET) method. How can I do?
So far, I tried the 2 options and none of them works very well:
1. I wrote a pl/sql procedure, but if I run it, then the page runs on my server application instead of actually going to another page in another server (I see the neame of the procedure in the web browser's address bar). Is there a way to work around a bit so that really, it goes to another page and pass the variables?
procedure do_post)
p_api_url in varchar2)
is
l_http_req utl_http.req;
l_http_resp utl_http.resp;
l_response varchar2 (4000);
l_post varchar2 (4000);
v_line varchar2 (4000);
v_wallet varchar2 (100): = "file:/etc/ORACLE/WALLETS/oracle5";
v_wallet_pwd varchar2 (100): = "test1234".
Start
l_post: = ' VK_SERVICE = 1001 & VK_VERSION = 008 & VK_SND_ID = testvpos & VK_STAMP = 88';
Utl_http.set_Proxy (apex_application.g_proxy_server, NULL);
Utl_http.set_persistent_conn_support (true);
Utl_http.set_transfer_timeout (300);
Utl_http.set_wallet (v_wallet, v_wallet_pwd);
l_http_req: = utl_http.begin_request (p_api_url, 'POST');
Utl_http.set_header (l_http_req, "Proxy-Connection ',' Keep-Alive'");
Utl_http.set_header ("l_http_req, 'Content-Type', ' application/x-www-formulaires-urlencoded; charset = utf-8 ');
Utl_http.set_header (l_http_req, "Content-Length", length (l_post) ");
Utl_http.write_text (l_http_req, l_post);
l_http_resp: = utl_http.get_response (l_http_req);
LOOP
Utl_http.read_line (l_http_resp, v_line, TRUE);
HTP.p (v_line);
END LOOP;
Utl_http.end_response (l_http_resp);
EXCEPTION
WHEN utl_http.end_of_body THEN
Utl_http.end_response (l_http_resp);
end do_post;
2. the second option, I tried is to put this script to my page of request code:
< name of the form = 'mounted' action = 'https://www.somekindofurl.com/cgi-bin/dv.sh/un3min.r. '
method = "POST" target = "_top" >
< input type = "hidden" name = "VK_SERVICE" value = "1001" >
< input type = "hidden" name = "VK_VERSION" value = "008" >
< input type = "hidden" name = "VK_SND_ID" value = "testvpos" >
< input type = "hidden" name = "VK_STAMP" value = "88" >
< input type = "submit" value = "Let's's Pay" >
< / make >
< / make >
But it does not work as APEX has its own system of Forms control. Is it possible to play? I tried to delete #FORM # of page templates and it works fine then. The problem is that I have other forms on the page as well (login form + search form) so I can't remove this manipulation of shape native APEX. Is it possible to play with it?
Thank you much in advance.Hi Ibenarobeno,
Your form can live at the end of the page with all the hidden items.
You can then control with buttons and fields within the form of the Apex.
through a bit of javascript.Concerning
Michael
-
How to change settings is disconnected so that other applications are not automatically closed?
original title: log settings (windows 7 Home Premium)
For Windows 7 Home Premium, how can we change the log settings so that other applications are not automatically closed with log off?
I'm trying to keep Microsoft Word and files that I have worked on before closing logon.
[Moved from the Word forum; please move again, if this isn't the right subforum]
At best, I think all you can do is Pin password to your taskbar,
Enable recent items, jump lists
Right click your Start button and select Properties,
Check the two boxes of privacy,
Then at least you will have this item / items on the jump list, you can open it immediately when you log back in.
You will still need to manually, save your work or value Word Auto save every minute / 60 seconds...
But when your disconnect there is no way to have a program remain open.
-
No planning application is visible in the workspace for users
Hey,.
There is a problem in prod and dev, it's nothing of the application are visible in the workspace-> Navigate-> Applications-> planning for normal users, admin user can check all applications in building and planning.
env: 11.1.2.1, please help.
Thank you
Kumar
If the administrator account can connect through the workspace should be check the provision of Shared Services, if you use a control AD there is no problem with connectivity, check the logs.
See you soon
John
-
How to pass the parameters in the http post method?
Hello
I want to download the mp3 file on server and I need to pass two parameters with the post method.
Here is my code for this.
String userid="id_user=8379"; String filename="trackName=sample.mp3"; String params=userid+"&"+filename; httpcon=(HttpConnection)Connector.open("http://api.upload.com/gStorage/uploadSong?output=json",Connector.READ_WRITE); httpcon.setRequestMethod(HttpConnection.POST); httpcon.setRequestProperty("Content-type","application/x-www-form-urlencoded"); httpcon.setRequestProperty("Content-type","audio/mpeg3"); os=httpcon.openOutputStream(); os.write(params.getBytes("UTF-8")); fc=(FileConnection)Connector.open("file:///E:/sample.mp3",Connector.READ_WRITE); fileis=fc.openInputStream(); bos=new ByteArrayOutputStream(); byte[] data=new byte[50000]; int ch; while ((ch=fileis.read(data,0,data.length))!=-1) { bos.write(data,0,ch); } os.write(bos.toByteArray()); os.close(); System.out.println("Response code From server"+httpcon.getResponseCode()); if(httpcon.getResponseCode()!=HttpConnection.HTTP_OK) { System.out.println("Failed to upload bytes"); } else { //is=httpcon.openInputStream(); DataInputStream dis=httpcon.openDataInputStream(); int ch1; StringBuffer buffer1=new StringBuffer(); while ((ch1=dis.read())!=-1) { buffer1.append((char)ch1); } System.out.println("Response From Server"+buffer1.toString()); } } i am getting response code ok but fail to upload file.may I passing the parameter in the wrong way?
thankx.
Hello
Nitin I currently do a midlet project.
So I used multipart post method.
I just read this article. http://MindTouch.firmstep.com/AchieveForms/Design_Guide/Integration_Actions/types/HTTP_POST#top
package com.http.main; import java.io.ByteArrayOutputStream; import java.io.InputStream; import java.io.OutputStream; import java.util.Enumeration; import java.util.Hashtable; import javax.microedition.io.Connector; import javax.microedition.io.HttpConnection; import com.sun.midp.io.BufferedConnectionAdapter; public class HttpMultipartRequest { static final String BOUNDARY = "----------V2ymHFg03ehbqgZCaKO6jy"; byte[] postBytes = null; String url = null; public HttpMultipartRequest(String url, Hashtable params, String fileField, String fileName, String fileType, byte[] fileBytes) throws Exception { this.url = url; String boundary = getBoundaryString(); String boundaryMessage = getBoundaryMessage(boundary, params, fileField, fileName, fileType); String endBoundary = "\r\n--" + boundary + "--\r\n"; ByteArrayOutputStream bos = new ByteArrayOutputStream(); bos.write(boundaryMessage.getBytes()); bos.write(fileBytes); bos.write(endBoundary.getBytes()); this.postBytes = bos.toByteArray(); bos.close(); } String getBoundaryString() { return BOUNDARY; } String getBoundaryMessage(String boundary, Hashtable params, String fileField, String fileName, String fileType) { StringBuffer res = new StringBuffer("--").append(boundary).append("\r\n"); Enumeration keys = params.keys(); while(keys.hasMoreElements()) { String key = (String)keys.nextElement(); String value = (String)params.get(key); res.append("Content-Disposition: form-data; name=\"").append(key).append("\"\r\n") .append("\r\n").append(value).append("\r\n") .append("--").append(boundary).append("\r\n"); System.out.println("****In while Loop:-****"+res); } res.append("Content-Disposition: form-data; name=\"").append(fileField).append("\"; filename=\"").append(fileName).append("\"\r\n") .append("Content-Type: ").append(fileType).append("\r\n\r\n"); return res.toString(); } public byte[] send() throws Exception { HttpConnection hc = null; InputStream is = null; ByteArrayOutputStream bos = new ByteArrayOutputStream(); byte[] res = null; try { hc = (HttpConnection) Connector.open(url); hc.setRequestProperty("Content-Type", "multipart/form-data; boundary=" + getBoundaryString()); hc.setRequestProperty("Content-Length",postBytes+""); hc.setRequestMethod(HttpConnection.POST); OutputStream dout = hc.openOutputStream(); dout.write(postBytes); dout.close(); int ch; is = hc.openInputStream(); StringBuffer buffer=new StringBuffer(); while ((ch = is.read()) != -1) { bos.write(ch); buffer.append((char)ch); } res = bos.toByteArray(); System.out.println(buffer.toString()); } catch(Exception e) { e.printStackTrace(); } finally { try { if(bos != null) bos.close(); if(is != null) is.close(); if(hc != null) hc.close(); } catch(Exception e2) { e2.printStackTrace(); } } return res; } }and use it in this way
public void getBytes() { ByteArrayOutputStream bos=null; try { bos=new ByteArrayOutputStream(); InputStream fis=getClass().getResourceAsStream("/super.mp3"); int ch; byte[] data=new byte[120]; while((ch=fis.read(data,0,data.length))!=-1) { bos.write(data,0,data.length); } Hashtable params=new Hashtable(); //params.put("id_user","8474"); params.put("id_user","8379"); params.put("file1","audio.mp3"); HttpMultipartRequest httpreq=new HttpMultipartRequest("http://api.upload.com/gStorage/uploadSong?", params,"file1","xpressMusic.mp3","audio/mpeg",bos.toByteArray()); httpreq.send(); bos.close(); fis.close(); } catch (Exception e) { System.out.println("Exception"+e); }Here, the key is contenttype, contentLength.you can get the info on it from the link above.
thankx.
-
To mySQL, then the email form does not work after the insertion of the post
I use the Spry framework to validate certain fields on a form and then insert all of the data forms in a database (with no problems). Then, I want to send an email with a few fields from the form submission. Normally this works very well in the email PHP code that I have, BUT after adding the spry validation or after you add the insert after section of goto, email PHP code no longer receives the form post data.
Any ideas what could cause the loss of the post of the form variables?
Thank you!
-Daniel Hoviss
Normally the form sends the data to the processing page, I transmit not explicitly all variables form.
Like this
In fact, you pass form variables explicitly. It's that submit a form.
When you submit a form, the variables are passed to the next page, through the GET method or the POST method. That's why you can access it using $_POST or $_GET. Variables exist only from one page to another. As soon as you redirect the user to another page, the values are destroyed. The code in Dreamweaver $insertGoTo uses the header() function to redirect the user to another page. This is why your variables are no longer available.
The simple way around this is to add the email script immediately before the code that redirects the user. You can either put the E-mail script directly in the same page, or use a PHP include.
-
How to make httpconnection and get the xml response using httpconnection in post method.
Hello
I am new to the blackberry web work,
I want to make httpconnection using the post method and also pass a parameter related to my url.
This function returns xml data.
How can I perform this task.
Please help me if anyone has a solution...
I have soved that problem myself.
-
Sliders on my muse adobe site are visible when I discovered the site in the browser within the program, but does not show up on the published site.
explorersglobalfineart.com
How can I rectify this?
Thank you
A large number of files in your site seems not to be on the server. If you use file > upload to FTP host, please repeat the process and select Download all files. If you use file > export as HTML and download with an FTP external program, please repeat the export process in an EMPTY FOLDER and then download everything that has been exported to your server.
-
How can I fix? iPhone and iPad are visible to each other in parachute drop but they does not see my Macbook Pro.
Greetings brsm1990,
Thank you for using communities Support from Apple!
I understand that your iOS devices can see each other with the help of parachuting, but your Mac does not see them. To begin troubleshooting, I suggest you read the information in the following article.
Use AirDrop to send the contents of your Mac - Apple Support
Tips for sending items
If you do not see the recipient in the AirDrop window or sheet:
- Make sure that the two devices have on AirDrop and are less than 30 feet (9 meters) on the other.
- If you send to an iPhone, iPad or iPod touch:
- Your Mac must be a 2012 model or newer with OS X Yosemite or later.
- The iOS device must use iOS 7 or later and have Personal Hotspot disabled in settings > cellular.
- If you send a Mac:
- If the receiver Mac uses OS X Mavericks, Cougar or Lion, then open a window AirDrop: choose go > AirDrop in the menu in the Finder bar.
- If the receiver Mac is a 2012 model or, click "Don't see you looking?" in the drop window or the sharing of the sending of the Mac spreadsheet. Then click on "Search for an older Mac."
- Know if the Mac has "block all incoming connections" enabled in the security and privacy preferences. A Mac does not receive items using AirDrop if this setting is enabled.
- If AirDrop on the receiving device is set up to receive points of contacts only, make sure that the two devices are connected to iCloud. Also make sure the associated e-mail address or phone number to your identifier Apple is in the Contacts application on the receiving device.
Release system requirements
Send items to an iPhone, iPad or iPod touch, or to receive these devices, you need a 2012 model or later Mac with OS X Yosemite or later version, except the Mac Pro (mid-2012).
To send items to another Mac, you must:
- MacBook Pro (Late 2008) or later, excluding the MacBook Pro (17 inch, late 2008)
- MacBook Air (late 2010) or later version
- MacBook (Late 2008) or later, excluding the white MacBook (Late 2008)
- iMac (early 2009) or later version
- Mac Mini (mid-2010) or later version
- Mac Pro (early 2009 with AirPort Extreme card or mid-2010)
Learn how to identify your model of MacBook, MacBook Pro, MacBook Air, iMac, Mac minior Mac Pro.
I know you said that your Mac does not see your iOS devices, but your iOS devices sees the Mac?
Best!
-
When I open a file in any folder in the finder, in an application that is linked to iCloud, i.e. 'Expert PDF' or 'Preview', I opened, the file will be copied to the application folder instantly. This only happens on Mac.
On Mac, the file appears in the folder something like a shortened (as in the picture):
If I open the mobile application (i.e. PDF Expert) there is a copy of the file in the application folder.
I first thought that would happen only with Expert PDF, but I discovered that it happens with any application that is enabled in the settings of the iCloud drive. It's really annoying to remove them, every time that you open the. That this feature was actually supposed to do, is create a folder in iCloud drive that is assigned to the application on any device to iCloud.
Maybe someone knows how to turn it off, or maybe it's just a bug.
It looks like a feature and not a bug.
iCloud is not really duplicate files in the files collection of application. It looks like a file duplicate of the same size as the original, that you have opened, but iCloud is record storage by creating symbolic links. .
I checked several of apparent duplicates in the Terminal, and if I list the file with the Terminal command
LS - li somefileoniclouddrive
I see that the inodes are identical to the original and the duplicate. So no additional storage is required.
-
Firefox does not open for me to make changes in order to correct the problem. The error box simply States that personal information settings do not exist or are inaccessible. This isn't a problem on this computeror I wouldn't be able to send this message.
This is usually caused by a problem with the file profiles.ini and the profile marked as the default value = 1 is no longer present on the hard drive.
- Windows: '% AppData%\Mozilla\Firefox\ '.
- Linux: ~/.mozilla/firefox/
- Mac: ~/Library/Application Support/Firefox /.
- Remove the profiles.ini file to force Firefox to create a new default profile
- Use the Profile Manager to create a new profile
- "Select a file" allows to retrieve an existing profile, if there is always a present
- http://KB.mozillazine.org/Profile_Manager
- https://support.Mozilla.org/KB/managing+profiles
- http://KB.mozillazine.org/Profile_folder_-_Firefox
See also "create a profile":
- https://support.Mozilla.org/KB/Profile-Manager-create-and-remove-Firefox-profiles
- http://KB.mozillazine.org/Standard_diagnostic_-_Firefox#Profile_issues
If the new profile works then you can transfer files from a profile in the new profile, but be careful not to copy files corrupted to avoid transporting on the problem.
Maybe you are looking for
-
It does not matter what I am trying to load to open e-mail messages to commercial sites to watch cbs programming. The problem started a little over a week and I tried the measures indicated in my question. I also took my computer to a national comput
-
Hey all,. I had a w2207 yesterday. It is a large screen, but he made some things funny with my ps3. When I got it, it was fine. I loaded a game, made a few updates, not a big deal. As soon as I tried to play "warhawk", the screen went on the fritz an
-
I seem to get an error of "com.google.process.gapps", every day now. It started a few days ago and got worse with time. Often I will get it 2 or 3 times in a row, especially when moving from one screen to the other. I have the option "force close" an
-
I get this error code 646 when I try to download an update from the update of the window. __
Update of security for Microsoft Office Outlook 2007 (KB972363) Download size: 11.0 MB You may have to restart your computer for this update is taken into account. Update type: Important A vulnerability of security in Microsoft Office Outlook 2007 th
-
How to add pdf converter in the window application toolbar
Hello I asked window with its integrated Toolbar / Menu. I would like to add the option of PDF conversion on the toolbar. But I couldn't show it because it is not in the options to display on the toolbar.