Fortinet black logo

Log Message Reference

Home FortiWeb 7.0.3 Log Message Reference
7.0.3
7.4.0
7.2.2
7.2.1
7.2.0
7.0.4
7.0.3
7.0.2
7.0.0
6.4.2
6.4.1
6.3.17
6.3.16
6.3.15
6.3.14
6.3.13
6.3.11
6.3.10
6.3.9
6.3.4
6.3.3
6.3.2
6.3.1
6.3.0
6.2.6
6.2.5
6.2.4
6.2.3
6.2.2
6.2.1
4.4.6
4.4.4
4.4.3
4.4.2
4.4.1

20000024

20000024

Meaning

CSRF Detection.

Field name Description

log_id

20000024

See Log ID numbers.

main_type

CSRF Protection

subtype

N/A

Examples

date=2022-07-11 time=16:46:38 log_id=20000024 msg_id=000000206285 device_id=FVVM08TM21000756 vd="root" timezone="(GMT-8:00)Pacific Time(US&Canada)" timezone_dayst="GMTa+7" type=attack pri=alert main_type="CSRF Protection" sub_type="N/A" trigger_policy="N/A" severity_level=Low proto=tcp service=https/tls1.2 backend_service=unknown action=Alert_Deny policy="FWB_Policy_Default_AutoTest" src=192.168.1.8 src_port=56041 dst=10.102.0.1 dst_port=80 http_method=get http_url="/autotest/CSRF/request_information.php?a=100&tknfv=xx678A3E0D4EF96F744F9553D4362946C3xx" http_host="fortinet.fortiweb.com" http_agent="python-for-fortiweb" http_session_id=678A3E0D4EF96F744F9553D4362946C3 msg="CSRF Detection, Token length" signature_subclass="N/A" signature_id="N/A" signature_cve_id="N/A" srccountry="Reserved" content_switch_name="none" server_pool_name="FWB_server_pool" false_positive_mitigation="none" user_name="Unknown" monitor_status="Disabled" http_refer="none" http_version="2.0" dev_id="0439ABB6C35C5C0625CC4AA576110D1389FE" es=0 threat_weight=50 history_threat_weight=150 threat_level=Substantial ftp_mode="N/A" ftp_cmd="N/A" cipher_suite="TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" ml_log_hmm_probability=0.000000 ml_log_sample_prob_mean=0.000000 ml_log_sample_arglen_mean=0.000000 ml_log_arglen=0 ml_svm_log_main_types=0 ml_svm_log_match_types="none" ml_svm_accuracy="none" ml_domain_index=0 ml_url_dbid=0 ml_arg_dbid=0 ml_allow_method="none" owasp_top10="A01:2021-Broken Access Control" bot_info="none" client_level="Suspicious" x509_cert_subject="none" owasp_api_top10="N/A"
Previous
Next

20000024

Meaning

CSRF Detection.

Field name Description

log_id

20000024

See Log ID numbers.

main_type

CSRF Protection

subtype

N/A

Examples

date=2022-07-11 time=16:46:38 log_id=20000024 msg_id=000000206285 device_id=FVVM08TM21000756 vd="root" timezone="(GMT-8:00)Pacific Time(US&Canada)" timezone_dayst="GMTa+7" type=attack pri=alert main_type="CSRF Protection" sub_type="N/A" trigger_policy="N/A" severity_level=Low proto=tcp service=https/tls1.2 backend_service=unknown action=Alert_Deny policy="FWB_Policy_Default_AutoTest" src=192.168.1.8 src_port=56041 dst=10.102.0.1 dst_port=80 http_method=get http_url="/autotest/CSRF/request_information.php?a=100&tknfv=xx678A3E0D4EF96F744F9553D4362946C3xx" http_host="fortinet.fortiweb.com" http_agent="python-for-fortiweb" http_session_id=678A3E0D4EF96F744F9553D4362946C3 msg="CSRF Detection, Token length" signature_subclass="N/A" signature_id="N/A" signature_cve_id="N/A" srccountry="Reserved" content_switch_name="none" server_pool_name="FWB_server_pool" false_positive_mitigation="none" user_name="Unknown" monitor_status="Disabled" http_refer="none" http_version="2.0" dev_id="0439ABB6C35C5C0625CC4AA576110D1389FE" es=0 threat_weight=50 history_threat_weight=150 threat_level=Substantial ftp_mode="N/A" ftp_cmd="N/A" cipher_suite="TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384" ml_log_hmm_probability=0.000000 ml_log_sample_prob_mean=0.000000 ml_log_sample_arglen_mean=0.000000 ml_log_arglen=0 ml_svm_log_main_types=0 ml_svm_log_match_types="none" ml_svm_accuracy="none" ml_domain_index=0 ml_url_dbid=0 ml_arg_dbid=0 ml_allow_method="none" owasp_top10="A01:2021-Broken Access Control" bot_info="none" client_level="Suspicious" x509_cert_subject="none" owasp_api_top10="N/A"
Previous
Next