Security attack was stopped !

Hi all,

I think somebody have try to attack my site :s

I have this message on my mailboxe, please help me !!!

Total impact: 4
Affected tags: xss, csrf, id, rfe

Variable: COOKIE.memberSession | Value: YNVxzxx=/DySTRRV/MZV7F2BjdVeLjb.
Impact: 4 | Tags: xss, csrf, id, rfe
Description: Detects common XSS concatenation patterns 1/2 | Tags: xss, csrf, id, rfe | ID: 30

REMOTE_ADDR: 202.73.333.88
HTTP_X_FORWARDED_FOR: 
HTTP_CLIENT_IP: 
SCRIPT_FILENAME: /home/*****/public_html/flash/XML.php
QUERY_STRING: module=im&action=updateInvite&recipient=103&_t=1301759330631
REQUEST_URI: /flash/XML.php?module=im&action=updateInvite&recipient=103&_t=1301759330631
QUERY_STRING: module=im&action=updateInvite&recipient=103&_t=1301759330631
SCRIPT_NAME: /flash/XML.php
PHP_SELF: /flash/XML.php

You must be running a older version of dolphin. This security feature has been OFF by default in the last couple of versions of dolphin becuse it does not work correctly.

Turn it off.

http://www.boonex.com/unity/forums/#topic/Troubleshooting-Possible-Security-Attacks-.htm

Hi,

Thanks for your answer, I have the last version.

I have see your link but what must I do? I dont unterstand :s

It's explained in the post i linked to.

I will try to make it easier.

Go into your dolphin admin.

Go to Settings, then Advanced settings then to other.

Set these two values to -1

Total security impact threshold to send report:    
Total security impact threshold to send report and block aggressor:

it was already like that, but I had a second attack just now.

Im going on this page : /flash/XML.php

And I find me, on the profile page of a user. And since often, in "All activities", it appears that I'm visiting this profil, but I was not going for several days.

Just an FYI, the security impacts aren't under Other in 7.0.6, they're under Security.