About CSRF error log

toru sato asked on June 15, 2020 09:58

Hi

I found an error about CSRF in the Kentico event log.

Is this an external attack? What do you guys do when a CSRF error is logged?

Source: Application_Error EventCode: EXCEPTION UserName: public

EventDescription: Message: The CSRF hidden field was missing.

Exception type: CMS.Protection.Web.UI.CsrfException

Stack trace:

at CMS.Protection.Web.UI.CsrfProtection.OnPostMapRequestHandlerExecute(Object sender, EventArgs eventArgs)

at CMS.Base.AbstractHandler.CallEventHandler[TArgs](EventHandler1 h, TArgs e)

at CMS.Base.AbstractHandler.Raise[TArgs](String partName, List 1 list, TArgs e, Boolean important)

at CMS.Base.SimpleHandler 2.RaiseExecute(TArgs e)

at CMS.Base.SimpleHandler 2.RaiseExecute(TArgs e)

at CMS.Base.SimpleHandler 2.StartEvent(TArgs e)

at CMS.Base.ApplicationModule.PostMapRequestHandler(Object sender, EventArgs e)

at System.Web.HttpApplication.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()

at System.Web.HttpApplication.ExecuteStepImpl(IExecutionStep step)

at System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)

Correct Answer

Dmitry Bastron answered on June 15, 2020 11:07

Hi Toru,

Please have a look at this answer. I'd say in 99% there is nothing to worry about, Kentico logs these events quite regularly as other third-party systems may send POST requests to your website. If you have IIS log - find this request and look at the URL, user-agent and other fields - it should give you a good idea of what's going on.

0 votesVote for this answer Unmark Correct answer

Recent Answers

toru sato answered on June 16, 2020 03:10

Hi Dmitry.

Thank you for answering!

0 votesVote for this answer Mark as a Correct answer

   Please, sign in to be able to submit a new answer.