By disabling this feature settings, you will open a cross-scripting vulnerability, but we hope that your PC is secure and that the phone Web User Interface is not reachable from the Internet.
This bug has been already fixed and will be implemented in the next versions.
I hit this problem today on an snom370 with firmware version 8.7.5.35 which according to wiki.snom.com is the recent firmware. Is this bug still unfixed or reintroduced?
S
Sidaty Khalihina
said
almost 3 years ago
you are welcome.
C
Corey Smiley
said
almost 3 years ago
I found that exact answer in the forums this morning. Thanks for the help.
S
Sidaty Khalihina
said
almost 3 years ago
Answer
We identified the issue. This is unfortunately a BUG in the software, but we have a workaround:
By disabling this feature settings, you will open a cross-scripting vulnerability, but we hope that your PC is secure and that the phone Web User Interface is not reachable from the Internet.
This bug has been already fixed and will be implemented in the next versions.
Corey Smiley
Every time I try to edit my directory entries this pops up. Any ideas.
Security Warning ! Either you or another remote user has sent an unauthorized HTTP POST request to this phone.
This request has been skipped and the authenticated session has been closed.
You have to reauthenticate yourself in order to use the web interface again.
We identified the issue. This is unfortunately a BUG in the software, but we have a workaround:
- disable Advanced -> QoS/Security (TAB) -> "Use hidden Tags"
- disable Advanced -> QoS/Security (TAB) -> "Restrict URI queries"
By disabling this feature settings, you will open a cross-scripting vulnerability, but we hope that your PC is secure and that the phone Web User Interface is not reachable from the Internet.
This bug has been already fixed and will be implemented in the next versions.- Oldest First
- Popular
- Newest First
Sorted by Newest FirstUwe Kleine-König
Sidaty Khalihina
you are welcome.
Corey Smiley
Sidaty Khalihina
We identified the issue. This is unfortunately a BUG in the software, but we have a workaround:
- disable Advanced -> QoS/Security (TAB) -> "Use hidden Tags"
- disable Advanced -> QoS/Security (TAB) -> "Restrict URI queries"
By disabling this feature settings, you will open a cross-scripting vulnerability, but we hope that your PC is secure and that the phone Web User Interface is not reachable from the Internet.
This bug has been already fixed and will be implemented in the next versions.-
LDAP and country code
-
Settings are changed when user logs on
-
USB Bluetooth compatibility for D725
-
Low volume with Plantronics Headset
-
Change Log for FW 8.8.3.32
-
Subscriptions failing after time since upgrade to 8.7.5.28
-
SNOM 870 - INBAND DTMF
-
SNOM 320 + Headset Plantronics CS540A with Snom EHS
-
Configure Settings - Set all to Read Only
-
Can't enter "+" sign in directory via WUI
See all 494 topics