http://opendata.kedirikab.go.id/profile?action=%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss5%27%29%3E&cat=%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss12%27%29%3E&id=%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss4%27%29%3E&key=%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss14%27%29%3E&keyword=%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss6%27%29%3E&keywords=%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss9%27%29%3E&name=%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss13%27%29%3E&p=%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss15%27%29%3E&page=%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss8%27%29%3E&q=%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss1%27%29%3E&query=%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss7%27%29%3E&redirect_uri=%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss15%27%29%3E&redirect_url=%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss15%27%29%3E&s=%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss2%27%29%3E&search=%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss3%27%29%3E&url=%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss10%27%29%3E&view=%27%3E%22%3Csvg%2Fonload%3Dconfirm%28%27testing-xss11%27%29%3E

Forwarded to
ErrorController (8620e3)
Method
GET
HTTP Status
404
IP
172.16.25.100
Profiled on
Token
6d215a

n/a

Request

GET Parameters

Key Value
action 
"'>"<svg/onload=confirm('testing-xss5')>"
cat 
"'>"<svg/onload=confirm('testing-xss12')>"
id 
"'>"<svg/onload=confirm('testing-xss4')>"
key 
"'>"<svg/onload=confirm('testing-xss14')>"
keyword 
"'>"<svg/onload=confirm('testing-xss6')>"
keywords 
"'>"<svg/onload=confirm('testing-xss9')>"
name 
"'>"<svg/onload=confirm('testing-xss13')>"
p 
"'>"<svg/onload=confirm('testing-xss15')>"
page 
"'>"<svg/onload=confirm('testing-xss8')>"
q 
"'>"<svg/onload=confirm('testing-xss1')>"
query 
"'>"<svg/onload=confirm('testing-xss7')>"
redirect_uri 
"'>"<svg/onload=confirm('testing-xss15')>"
redirect_url 
"'>"<svg/onload=confirm('testing-xss15')>"
s 
"'>"<svg/onload=confirm('testing-xss2')>"
search 
"'>"<svg/onload=confirm('testing-xss3')>"
url 
"'>"<svg/onload=confirm('testing-xss10')>"
view 
"'>"<svg/onload=confirm('testing-xss11')>"

POST Parameters

No POST parameters

Uploaded Files

No files were uploaded

Request Attributes

Key Value
_remove_csp_headers 
true
_stopwatch_token 
"d07b7c"

Request Headers

Header Value
accept 
"*/*"
accept-encoding 
"gzip"
accept-language 
"en"
authorization 
""
connection 
"close"
cookie 
"PHPSESSID=jrtbuibilttmc6545rr8vkfm5j"
host 
"opendata.kedirikab.go.id"
user-agent 
"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.1 Safari/605.1.15"
x-forwarded-for 
"192.168.60.9"
x-forwarded-proto 
"https"
x-forwarded-scheme 
"https"
x-php-ob-level 
"1"
x-real-ip 
"192.168.60.9"

Request Content

Request content not available (it was retrieved as a resource).

Response

Response Headers

Header Value
cache-control 
"no-cache, private"
content-type 
"text/html; charset=UTF-8"
date 
"Tue, 26 Nov 2024 15:43:52 GMT"
x-debug-exception 
"No%20route%20found%20for%20%22GET%20http%3A%2F%2Fopendata.kedirikab.go.id%2Fprofile%22"
x-debug-exception-file 
"%2Fvar%2Fwww%2Fhtml%2Fopen_data%2Fvendor%2Fsymfony%2Fhttp-kernel%2FEventListener%2FRouterListener.php:135"
x-debug-token 
"6d215a"
x-debug-token-link 
"http://opendata.kedirikab.go.id/_profiler/8620e3"
x-previous-debug-token 
"8620e3"
x-robots-tag 
"noindex"

Cookies

Request Cookies

Key Value
PHPSESSID 
"jrtbuibilttmc6545rr8vkfm5j"

Response Cookies

No response cookies

Session

Session Metadata

No session metadata

Session Attributes

No session attributes

Session Usage

0 Usages
Stateless check enabled

Session not used.

Flashes

Flashes

No flash messages were created.

Server Parameters

Server Parameters

Defined in .env

Key Value
API_TOKEN 
"4a81432adf56aeb6aadfffa65ab70ab1"
API_URL 
"http://172.16.16.68/api_/opendata.php"
APP_CLIENT_ADDRESS 
"Jl. Sekartaji No.2, Sumber, Doko, Kec. Ngasem, Kabupaten Kediri, Jawa Timur"
APP_CLIENT_CONTACT 
"Telp. (0354) 682152"
APP_CLIENT_EMAIL 
""
APP_CLIENT_NAME 
"Kabupaten Kediri"
APP_CLIENT_SHORTNAME 
"Kabupaten Kediri"
APP_ENV 
"dev"
APP_ICON 
"assets/logo/logo_masbup.png"
APP_ICON_LOGO 
"assets/logo/kota_kediri.png"
APP_NAME 
"Open Data Kediri"
APP_SECRET 
"302717838b52f3d1699a25e8e3ef6a9d"
COLOR_DANGER 
"#b20238;"
COLOR_INFO 
"#e8d21d;"
COLOR_PRIMARY 
"#039fbe;"
COLOR_WARNING 
"#cf1578;"
DATABASE_URL 
"postgresql://postgres:opendata2022!@127.0.0.1:5432/open_data_kediri?serverVersion=13&charset=utf8"
OPEN_DATA_ICON 
"assets/logo/logo_masbup_merah.png"

Defined as regular env variables

Key Value
APP_DEBUG 
"1"
CONTEXT_DOCUMENT_ROOT 
"/var/www/html/open_data/public/"
CONTEXT_PREFIX 
""
DOCUMENT_ROOT 
"/var/www/html/open_data/public/"
GATEWAY_INTERFACE 
"CGI/1.1"
HTTP_ACCEPT 
"*/*"
HTTP_ACCEPT_ENCODING 
"gzip"
HTTP_ACCEPT_LANGUAGE 
"en"
HTTP_AUTHORIZATION 
""
HTTP_CONNECTION 
"close"
HTTP_COOKIE 
"PHPSESSID=jrtbuibilttmc6545rr8vkfm5j"
HTTP_HOST 
"opendata.kedirikab.go.id"
HTTP_USER_AGENT 
"Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/15.1 Safari/605.1.15"
HTTP_X_FORWARDED_FOR 
"192.168.60.9"
HTTP_X_FORWARDED_PROTO 
"https"
HTTP_X_FORWARDED_SCHEME 
"https"
HTTP_X_REAL_IP 
"192.168.60.9"
PATH 
"/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/bin"
PHP_SELF 
"/index.php"
QUERY_STRING 
"p=profile&q=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss1%27%29%3E&s=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss2%27%29%3E&search=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss3%27%29%3E&id=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss4%27%29%3E&action=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss5%27%29%3E&keyword=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss6%27%29%3E&query=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss7%27%29%3E&page=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss8%27%29%3E&keywords=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss9%27%29%3E&url=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss10%27%29%3E&view=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss11%27%29%3E&cat=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss12%27%29%3E&name=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss13%27%29%3E&key=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss14%27%29%3E&p=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss15%27%29%3E&redirect_uri=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss15%27%29%3E&redirect_url=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss15%27%29%3E"
REDIRECT_QUERY_STRING 
"p=profile&q=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss1%27%29%3E&s=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss2%27%29%3E&search=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss3%27%29%3E&id=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss4%27%29%3E&action=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss5%27%29%3E&keyword=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss6%27%29%3E&query=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss7%27%29%3E&page=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss8%27%29%3E&keywords=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss9%27%29%3E&url=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss10%27%29%3E&view=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss11%27%29%3E&cat=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss12%27%29%3E&name=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss13%27%29%3E&key=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss14%27%29%3E&p=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss15%27%29%3E&redirect_uri=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss15%27%29%3E&redirect_url=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss15%27%29%3E"
REDIRECT_STATUS 
"200"
REDIRECT_URL 
"/profile"
REMOTE_ADDR 
"172.16.25.100"
REMOTE_PORT 
"59718"
REQUEST_METHOD 
"GET"
REQUEST_SCHEME 
"http"
REQUEST_TIME 
1732635832
REQUEST_TIME_FLOAT 
1732635832.2361
REQUEST_URI 
"/profile?q=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss1%27%29%3E&s=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss2%27%29%3E&search=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss3%27%29%3E&id=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss4%27%29%3E&action=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss5%27%29%3E&keyword=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss6%27%29%3E&query=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss7%27%29%3E&page=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss8%27%29%3E&keywords=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss9%27%29%3E&url=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss10%27%29%3E&view=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss11%27%29%3E&cat=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss12%27%29%3E&name=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss13%27%29%3E&key=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss14%27%29%3E&p=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss15%27%29%3E&redirect_uri=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss15%27%29%3E&redirect_url=%27%3E%22%3Csvg%2Fonload=confirm%28%27testing-xss15%27%29%3E"
SCRIPT_FILENAME 
"/var/www/html/open_data/public/index.php"
SCRIPT_NAME 
"/index.php"
SERVER_ADDR 
"172.16.16.52"
SERVER_ADMIN 
"[no address given]"
SERVER_NAME 
"opendata.kedirikab.go.id"
SERVER_PORT 
"80"
SERVER_PROTOCOL 
"HTTP/1.1"
SERVER_SIGNATURE 
""
SERVER_SOFTWARE 
"Apache"
SYMFONY_DOTENV_VARS 
"APP_ENV,APP_SECRET,DATABASE_URL,API_URL,API_TOKEN,APP_NAME,OPEN_DATA_ICON,APP_ICON,APP_ICON_LOGO,APP_CLIENT_NAME,APP_CLIENT_SHORTNAME,APP_CLIENT_ADDRESS,APP_CLIENT_CONTACT,APP_CLIENT_EMAIL,COLOR_PRIMARY,COLOR_WARNING,COLOR_INFO,COLOR_DANGER"

Sub Requests 1

ErrorController (token = 8620e3)

Key Value
_controller 
"error_controller"
_stopwatch_token 
"8d0047"
exception 
Symfony\Component\HttpKernel\Exception\NotFoundHttpException {#55
  -statusCode: 404
  -headers: []
  #message: "No route found for "GET http://opendata.kedirikab.go.id/profile""
  #code: 0
  #file: "/var/www/html/open_data/vendor/symfony/http-kernel/EventListener/RouterListener.php"
  #line: 135
  -previous: Symfony\Component\Routing\Exception\ResourceNotFoundException {#102 …}
  trace: {
    /var/www/html/open_data/vendor/symfony/http-kernel/EventListener/RouterListener.php:135 {
      Symfony\Component\HttpKernel\EventListener\RouterListener->onKernelRequest(RequestEvent $event) …
      › 
      ›     throw new NotFoundHttpException($message, $e);} catch (MethodNotAllowedException $e) {
    }
    /var/www/html/open_data/vendor/symfony/event-dispatcher/Debug/WrappedListener.php:118 {
      Symfony\Component\EventDispatcher\Debug\WrappedListener->__invoke(object $event, string $eventName, EventDispatcherInterface $dispatcher): void …
      › try {    ($this->optimizedListener ?? $this->listener)($event, $eventName, $dispatcher);} finally {
    }
    /var/www/html/open_data/vendor/symfony/event-dispatcher/EventDispatcher.php:230 {
      Symfony\Component\EventDispatcher\EventDispatcher->callListeners(iterable $listeners, string $eventName, object $event) …
      ›     }    $listener($event, $eventName, $this);}
    }
    /var/www/html/open_data/vendor/symfony/event-dispatcher/EventDispatcher.php:59 {
      Symfony\Component\EventDispatcher\EventDispatcher->dispatch(object $event, string $eventName = null): object …
      › if ($listeners) {    $this->callListeners($listeners, $eventName, $event);}
    }
    /var/www/html/open_data/vendor/symfony/event-dispatcher/Debug/TraceableEventDispatcher.php:154 {
      Symfony\Component\EventDispatcher\Debug\TraceableEventDispatcher->dispatch(object $event, string $eventName = null): object …
      › try {    $this->dispatcher->dispatch($event, $eventName);} finally {
    }
    /var/www/html/open_data/vendor/symfony/http-kernel/HttpKernel.php:139 {
      Symfony\Component\HttpKernel\HttpKernel->handleRaw(Request $request, int $type = self::MAIN_REQUEST): Response …
      › $event = new RequestEvent($this, $request, $type);$this->dispatcher->dispatch($event, KernelEvents::REQUEST);}
    /var/www/html/open_data/vendor/symfony/http-kernel/HttpKernel.php:75 {
      Symfony\Component\HttpKernel\HttpKernel->handle(Request $request, int $type = HttpKernelInterface::MAIN_REQUEST, bool $catch = true) …
      › try {    return $this->handleRaw($request, $type);} catch (\Exception $e) {
    }
    /var/www/html/open_data/vendor/symfony/http-kernel/Kernel.php:202 {
      Symfony\Component\HttpKernel\Kernel->handle(Request $request, int $type = HttpKernelInterface::MAIN_REQUEST, bool $catch = true) …
      › try {    return $this->getHttpKernel()->handle($request, $type, $catch);} finally {
    }
    /var/www/html/open_data/public/index.php:20 {$request = Request::createFromGlobals();$response = $kernel->handle($request);$response->send();
    }
  }
}
logger 
null