XF 1.5 404 on /forum/login/login/login

rfc0001

Active member
#1
Hi, I'm looking through the top 404 errors on my server, and the #1 is a 404 on /forum/login/login/login with referrer /forum/login/ so I know this isn't users typing this in erroneously, rather the actual login page referencing this URL. I've never seen a 404 error directly or had anyone report any issues with registration (/forum/login/login), so I'm wondering if there is some erroneous reference somewhere to this non-existent page somewhere or a honeypot or something? There are 850 404s just this month alone, so seems to be happening pretty regularly. I could always create a 301 to redirect /forum/login/login/login to /forum/login/login, but "fixing" this may end up breaking the way it is working now with the error. Is this something others can confirm, or know what is causing? Thanks.
 
Last edited:

Alfa1

Well-known member
#4
I have seen this error on a number of installations. Some without addons. I wonder if this could be an exotic bug.
 

S Thomas

Well-known member
#5
with referrer /forum/login/ so I know this isn't users typing this in erroneously, rather the actual login page referencing this URL.
This is false conclusion, referrers can be faked and this more or less looks like a standard scrapper. I wouldn't be worried about it.
 
#6
This is false conclusion, referrers can be faked and this more or less looks like a standard scrapper. I wouldn't be worried about it.
I doubt this is malicious activity given the volume of these errors. I'm not worried about it, but seems like there some misbehaving/misconfigured code somewhere.
 

Alfa1

Well-known member
#8
Do you use a pixelexit style by any chance? Xenforo has an url /login/login
In the source of that page I did find a style reference for xenbase to /login so in theory that could explain for /login/login/login
But I don't see how the url would actually be called.

Maybe @Russ has an idea about this.
 

Alfa1

Well-known member
#10
Its this part:
Code:
<li class="navTab PopupClosed xbGuestLogin">
                    <label for="LoginControl"><a href="login/" class=" navLink"> <span class="xbVisitorText">Log in</span></a></label>
            </li>
It has a trailing slash. Not a leading slash.
 
#11
Yep, that would form a /login/login/login if it was included (and only there) in the login/login site, which is the login form when you call it directly. So your guest would have to manually open the login page.
 

Alfa1

Well-known member
#12
/login/login is also opened if you enter an invalid name on the login bar. Which happens if someone tries to create an account that already exists. Which happens if the user intended to log in or has a password manager autofill the form.
 
Top