| Author |
 Topic  |
|
aishah
Starting Member
Egypt
27 Posts |
 Posted - 02 April 2008 : 09:55:46
|
Hey gurus!
I have snitz version 3.4.06 and experience the following problem: When going to the members section and trying to sort by Member Since I get an error at the top of the member list and only 1 or 2 members show. This is the error:
Microsoft VBScript runtime error '800a000d'
Type mismatch: '[string: "Le"]'
/forum/inc_func_common.asp, line 614
It happens on page one, not on page 2, but on page 3. Thereafter the member list functions properly and I don't see the error message.
This never happened in 5-6 years, for as long as the forum has been online until it was hacked earlier this year. I have installed the fix etc etc. After the hacking incident I have this error from time to time but not always. It isn't consistent!
URL: www.cameldive.com/forum
Database type: don't know!
Many thanks 
|
|
|
muzishun
Senior Member
United States
1079 Posts |
Posted - 02 April 2008 : 10:14:07
|
It looks like someone tried to hack your site after you put the fix in. The "Le" is part of a string where somebody tried to inject SQL code to change their M_LEVEL. The error is being thrown on that user. The simplest thing would be to edit your database and change the value back to a valid one.
I can't remember if the field in question is the M_LEVEL or M_LAST_HERE, but you should see it pretty quickly. |
Bill Parrott
Senior Web Programmer, University of Kansas
Co-Owner and Code Monkey, Eternal Second Designs (www.eternalsecond.com)
Personal Website (www.chimericdream.com) |
 |
|
|
aishah
Starting Member
Egypt
27 Posts |
Posted - 02 April 2008 : 10:22:57
|
Oh, thanks!
Eh, how do I edit the database? How can I find the correct original value? |
|
|
|
HuwR
Forum Admin
United Kingdom
20584 Posts |
Posted - 02 April 2008 : 10:38:48
|
judging by the line indicated in the error, it will be the M_LAST_HERE
If you can email me your admin login details for the forum I should be able to fix it for you |
|
|
|
aishah
Starting Member
Egypt
27 Posts |
Posted - 02 April 2008 : 10:51:00
|
Oh wow, that is sooo kind. Just emailed you HuwR
:) |
|
|
|
HuwR
Forum Admin
United Kingdom
20584 Posts |
Posted - 02 April 2008 : 12:06:18
|
| ok, looks to be fixed now, let me know if you get any other problems. |
|
|
|
aishah
Starting Member
Egypt
27 Posts |
Posted - 03 April 2008 : 05:20:30
|
Excellent! Thanks so much, that was very generous and helpful. Let me know if you ever want to come and scuba dive in the Red Sea.  |
|
|
|
pdrg
Support Moderator
United Kingdom
2897 Posts |
Posted - 03 April 2008 : 12:06:12
|
| What a great exchange! |
|
|
|
HuwR
Forum Admin
United Kingdom
20584 Posts |
Posted - 03 April 2008 : 12:48:41
|
| well, If I ever get back to Egypt I will try and come to the Red Sea, it's been a few years since I was over that way, I lived/Worked in Egypt for almost 8 years. |
|
|
|
aishah
Starting Member
Egypt
27 Posts |
Posted - 20 April 2008 : 11:09:05
|
Aaaargrgrghhhhhh!!!!  It has happened again! Who the heck (no pun intended) is constantly trying to hack the forum???
This time I must try to solve it on my own though. I will surely need HuwR for something else in the future, won't waste my credits.  Hey HuwR, where did you live and what did you do here in Egypt?
Eh, so I get the inc_func_common.asp file and replace "Le" with "M_LAST_HERE".
RIGHT?  |
|
|
|
ruirib
Snitz Forums Admin
Portugal
26364 Posts |
|
|
aishah
Starting Member
Egypt
27 Posts |
Posted - 20 April 2008 : 12:00:28
|
Oh another Important Fix that I have missed. Thanks ruirib!
Jeez, people are so helpful around here, I've never experienced a forum where you get help so quickly. Or maybe you also want to go diving in the Red Sea, ruirib? |
|
|
|
ruirib
Snitz Forums Admin
Portugal
26364 Posts |
Posted - 20 April 2008 : 12:36:16
|
quote:
Originally posted by aishah
Oh another Important Fix that I have missed. Thanks ruirib!
Jeez, people are so helpful around here, I've never experienced a forum where you get help so quickly. Or maybe you also want to go diving in the Red Sea, ruirib?
It's an update to the original fix, precisely to prevent the type of issue you are facing. Some forums were not affected by this problem (members page still displays with bad last date), but we decided to post a fix that avoids it.
You should subscribe to the Announcements Security Bug fixes forum, to make sure you don't mix any important fixes.
P.S.: I don't mind a diving expedition either . |
Snitz 3.4 Readme | Like the support? Support Snitz too |
|
|
|
aishah
Starting Member
Egypt
27 Posts |
Posted - 20 April 2008 : 13:04:59
|
Got hacked earlier this year and have been subscribed ever since!
Interested in diving huh? The Red Sea is far warmer than your part of the planet. Been to Albufeira, 45 degrees on land and minus 3 in the water, impossible!
Thanks for everything,
Susanne |
|
|
|
ruirib
Snitz Forums Admin
Portugal
26364 Posts |
Posted - 20 April 2008 : 13:16:35
|
| Have never dived, was just taking your cue . Haven't been to Albufeira for some years, either. I live a bit more to the north and actually, for beach vacations, I usually visit Spain, since the water is usually warmer (I hate cold water ). |
Snitz 3.4 Readme | Like the support? Support Snitz too |
|
|
|
aishah
Starting Member
Egypt
27 Posts |
Posted - 26 April 2008 : 01:28:00
|
Hey guys,
I installed the fix posted here:
http://forum.snitz.com/forum/topic.asp?TOPIC_ID=66005
Then tried to edit the members.asp by using HuwR's:
[UPDATE]
MEMBERS
M_LASTHEREDATE#'20080414000000'#MEMBER_ID = IDOFDODGYUSER
[END]
This last thing didn't work. I get an error messaage saying
"2147217904 | No value given for one or more required parameters."
I had replaced IDOFDODGYUSER with the user who "breaks" my member list, then replaced 20080414000000 by 20080426000000
I know I have TWO users in the member list who have tried to hack the forum. I know both IDs and have tried both in the above fix, but to no avail.
Is it better to edit directly in the members.asp file and if so, what do I do there?
|
|
|
|
Topic |
|
Topic Locked
