Hi Michael
See the file attached from Tube.
Seems it wasn't attached in the mail list.
Best Regards
---
Mexina Daniel
Managing Director
Singo Africa Limited ~~ _adding value_
Magomeni-Makumbusho | Morogoro Rd/Ruaha Str.
Opp. Usalama BRT | Watumishi House, Wing B, Gnd Flr.
P.O BOX 78908 | 14121 Dar es salaam
+255 71 211 0791
amala.co.tz [1] | singo.africa [2]
On 14-09-2020 14:45, Michael Vorburger wrote:
> As far as one can tell from reading the email thread below, this just seems
> to be a question about how to use data tables feature?
>
> I'm not seeing anything below offering any details about anything related to
> an SQL Injection vulnerability.
>
> On Mon, 14 Sep 2020, 13:34 Mexina Daniel, <[email protected]> wrote:
>
> Hello Tube
>
> I have cc'd the community so that if there is anyone with a solution can
> share.
>
> Hello Community
>
> Can someone help as i haven't yet understood what could be the problem, i
> have attached the log file he shared.
>
> I can see there is an issue with SQLInjection.
>
> Best Regards
>
> ---
> Mexina Daniel
>
> Managing Director
>
> Singo Africa Limited ~~ _adding value_
>
> Magomeni-Makumbusho | Morogoro Rd/Ruaha Str.
>
> Opp. Usalama BRT | Watumishi House, Wing B, Gnd Flr.
>
> P.O BOX 78908 | 14121 Dar es salaam
>
> +255 71 211 0791
>
> amala.co.tz [1] | singo.africa [2]
>
> On 14-09-2020 13:00, ጓይላና Tube wrote:
> hello
>
> Here is the log file.
>
> Best Regards
>
> On Mon, 14 Sep 2020 at 09:19, Mexina Daniel <[email protected]> wrote:
>
> Hello
>
> Can you share the log file to see what is the error?
>
> Best Regards
>
> ---
> Mexina Daniel
>
> Managing Director
>
> Singo Africa Limited ~~ _adding value_
>
> Magomeni-Makumbusho | Morogoro Rd/Ruaha Str.
>
> Opp. Usalama BRT | Watumishi House, Wing B, Gnd Flr.
>
> P.O BOX 78908 | 14121 Dar es salaam
>
> +255 71 211 0791
>
> amala.co.tz [1] | singo.africa [2]
>
> On 13-09-2020 18:22, ጓይላና Tube wrote:
>
> On Sun, 13 Sep 2020 at 16:19, ጓይላና Tube <[email protected]> wrote:
> Hello
>
> i have installed mifos platform locally. but i got the same error in Mifos
> demo and locally installed mifos. Datatables are not displaying & showing red
> rectangle
>
> Below is a screenshot of the error
>
> Regards
>
> On Sun, 13 Sep 2020 at 11:13, Mexina Daniel <[email protected]> wrote:
> Hello
>
> Have you tried in a demo of Mifos and it's not displayed or you are talking
> of your system installed locally?
>
> Best Regards
>
> On 12 Sep 2020 23:22, ጓይላና Tube <[email protected]> wrote:
>
> Thank You for your resposne
>
> #Data tables created for Group, Client, Loan and Savings account is not
> getting displayed in the particular General pages (eg. datatable created for
> client is not displaying in Client general page),
> can you suggest me the solution to solve this problem?
>
> Best Regards
>
> On Sat, 12 Sep 2020 at 21:18, Mexina Daniel <[email protected]> wrote:
> Hello
>
> Go ahead and ask.
>
> Best Regards
>
> On 12 Sep 2020 19:57, ጓይላና Tube <[email protected]> wrote:
>
> this is tesfahiwet software developer from mekelle, ethiopia. i want to ask
> you some questions about mifos platform.
>
> thank you for your response
>
> On Sat, 12 Sep 2020 at 17:55, ጓይላና Tube <[email protected]> wrote:
> Thank you for your response.
>
> On Sat, 12 Sep 2020 at 17:02, Mexina Daniel <[email protected]> wrote:
> Hello
>
> We have received your text through our chat.
>
> May we know how we can help you?
>
> Best Regards
>
> Mexina Daniel
Links:
------
[1] https://amala.co.tz/
[2] https://singo.africa
Sep 14, 2020 10:56:01 AM com.sun.jersey.spi.container.ContainerResponse
mapMappableContainerException
SEVERE: The RuntimeException could not be mapped to a response, re-throwing to
the HTTP container
java.lang.NullPointerException
at
org.apache.fineract.infrastructure.security.utils.SQLInjectionValidator.validateSQLInput(SQLInjectionValidator.java:36)
at
org.apache.fineract.infrastructure.security.utils.ColumnValidator.validateSqlInjection(ColumnValidator.java:95)
at
org.apache.fineract.infrastructure.dataqueries.service.ReadWriteNonCoreDataServiceImpl.retrieveDataTableGenericResultSet(ReadWriteNonCoreDataServiceImpl.java:1190)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:498)
at
org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:317)
at
org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:201)
at com.sun.proxy.$Proxy145.retrieveDataTableGenericResultSet(Unknown
Source)
at
org.apache.fineract.infrastructure.dataqueries.api.DatatablesApiResource.getDatatable(DatatablesApiResource.java:174)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:498)
at
com.sun.jersey.spi.container.JavaMethodInvokerFactory$1.invoke(JavaMethodInvokerFactory.java:60)
at
com.sun.jersey.server.impl.model.method.dispatch.AbstractResourceMethodDispatchProvider$TypeOutInvoker._dispatch(AbstractResourceMethodDispatchProvider.java:185)
at
com.sun.jersey.server.impl.model.method.dispatch.ResourceJavaMethodDispatcher.dispatch(ResourceJavaMethodDispatcher.java:75)
at
com.sun.jersey.server.impl.uri.rules.HttpMethodRule.accept(HttpMethodRule.java:302)
at
com.sun.jersey.server.impl.uri.rules.RightHandPathRule.accept(RightHandPathRule.java:147)
at
com.sun.jersey.server.impl.uri.rules.ResourceClassRule.accept(ResourceClassRule.java:108)
at
com.sun.jersey.server.impl.uri.rules.RightHandPathRule.accept(RightHandPathRule.java:147)
at
com.sun.jersey.server.impl.uri.rules.RootResourceClassesRule.accept(RootResourceClassesRule.java:84)
at
com.sun.jersey.server.impl.application.WebApplicationImpl._handleRequest(WebApplicationImpl.java:1511)
at
com.sun.jersey.server.impl.application.WebApplicationImpl._handleRequest(WebApplicationImpl.java:1442)
at
com.sun.jersey.server.impl.application.WebApplicationImpl.handleRequest(WebApplicationImpl.java:1391)
at
com.sun.jersey.server.impl.application.WebApplicationImpl.handleRequest(WebApplicationImpl.java:1381)
at
com.sun.jersey.spi.container.servlet.WebComponent.service(WebComponent.java:416)
at
com.sun.jersey.spi.container.servlet.ServletContainer.service(ServletContainer.java:538)
at
com.sun.jersey.spi.container.servlet.ServletContainer.service(ServletContainer.java:716)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:728)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:303)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
at
org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
at
org.springframework.security.web.access.intercept.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:108)
at
org.springframework.security.web.access.intercept.FilterSecurityInterceptor.doFilter(FilterSecurityInterceptor.java:84)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:330)
at
org.springframework.security.web.access.intercept.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:118)
at
org.springframework.security.web.access.intercept.FilterSecurityInterceptor.doFilter(FilterSecurityInterceptor.java:84)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
at
org.springframework.security.web.access.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:113)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
at
org.springframework.security.web.authentication.AnonymousAuthenticationFilter.doFilter(AnonymousAuthenticationFilter.java:113)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
at
org.springframework.security.web.servletapi.SecurityContextHolderAwareRequestFilter.doFilter(SecurityContextHolderAwareRequestFilter.java:154)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
at
org.apache.fineract.infrastructure.security.filter.InsecureTwoFactorAuthenticationFilter.doFilter(InsecureTwoFactorAuthenticationFilter.java:80)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
at
org.springframework.security.web.context.request.async.WebAsyncManagerIntegrationFilter.doFilterInternal(WebAsyncManagerIntegrationFilter.java:50)
at
org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
at
org.springframework.security.web.authentication.www.BasicAuthenticationFilter.doFilter(BasicAuthenticationFilter.java:201)
at
org.apache.fineract.infrastructure.security.filter.TenantAwareBasicAuthenticationFilter.doFilter(TenantAwareBasicAuthenticationFilter.java:153)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
at
org.springframework.security.web.context.SecurityContextPersistenceFilter.doFilter(SecurityContextPersistenceFilter.java:87)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
at
org.springframework.security.web.access.channel.ChannelProcessingFilter.doFilter(ChannelProcessingFilter.java:144)
at
org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:342)
at
org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:192)
at
org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:160)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
at
org.springframework.boot.context.web.ErrorPageFilter.doFilter(ErrorPageFilter.java:108)
at
org.springframework.boot.context.web.ErrorPageFilter.access$000(ErrorPageFilter.java:58)
at
org.springframework.boot.context.web.ErrorPageFilter$1.doFilterInternal(ErrorPageFilter.java:87)
at
org.springframework.web.filter.OncePerRequestFilter.doFilter(OncePerRequestFilter.java:107)
at
org.springframework.boot.context.web.ErrorPageFilter.doFilter(ErrorPageFilter.java:100)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:219)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:110)
at
org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:492)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:165)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:104)
at
org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:1025)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:452)
at
org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1201)
at
org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:654)
at
org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:317)
at
java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149)
at
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624)
at
org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
at java.lang.Thread.run(Thread.java:748)
