Skip to main content
Contact a Moderator

Question

2
Replies
778
Views
 Dmitriy Barykin (DmitriyB4284)
Lanit

Lanit
RU
DmitriyB4284 Member since 2018 2 posts
Lanit
Posted: January 13, 2021
Last activity: 2 weeks 5 days ago
Posted: 13 Jan 2021 6:56 EST
Last activity: 5 Oct 2021 12:24 EDT

SECU0019 Unauthorized request detected when using OOTB control

Report

We recently moved from Pega 7.2.2 to 8.4.3 and came across a problem - clicking on filter icon in Table causes Security Alert:

Unauthorized request detected : Unregistered request encountered for activity pzRunActionWrapper 

and there is a warning message on UI:

URL tampering vulnerability detected.

 

This article https://community.pega.com/knowledgebase/articles/security/85/verify-requests-application-layer implies that this warning only appears when using custom non-autogenerated controls, however we are using OOTB table filtering functionality, we don't have any custom controls or Run Script actions in our application.

Is this Pega's defect or do we need to change some settings in our application after moving from 7.2.2? Will this be fixed in 8.5 since pyBlockUnregisteredRequests will be blocking unregistered requests by default?

Pega Platform 8.4.3 Security
Reply
Posted: 9 months ago
Posted: 14 Jan 2021 8:01 EST
Marc Lasserre (MarcLasserre_GCS)
PEGA
Principal Software Solutions Engineer
Pegasystems Inc.
FR
Report

Hello, 

Are you having this issue on a specific table? Or is it all of them? 

Have you try the same thing with an Out-Of-The-Box operator on a default table on UI Gallery for example?

Reply

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice