Security fix: unauthorized access (#10091)

* Security fix: unauthorized access Affects nginx users: Moved php files outside of public html directory (Apache was protected by .htaccess) Affects all users: Some files did not check for authentication and could disclose some info. Better checks before including files from user input * git mv html/includes/ includes/html git mv html/pages/ includes/html/
2024-10-07 16:52:45 +00:00 · 2019-04-11 23:26:42 -05:00
parent b81af32ed2
commit 36431dd296
1301 changed files with 1443 additions and 1439 deletions
--- a/includes/html/modal/delete_host_dependency.inc.php
+++ b/includes/html/modal/delete_host_dependency.inc.php
@@ -0,0 +1,74 @@
+<?php
+/*
+ * LibreNMS
+ *
+ * Copyright (c) 2017 Aldemir Akpinar <https://github.com/aldemira>
+ *
+ * This program is free software: you can redistribute it and/or modify it
+ * under the terms of the GNU General Public License as published by the
+ * Free Software Foundation, either version 3 of the License, or (at your
+ * option) any later version.  Please see LICENSE.txt at the top level of
+ * the source code distribution for details.
+ */
+
+use LibreNMS\Authentication\LegacyAuth;
+
+if (!LegacyAuth::user()->hasGlobalAdmin()) {
+    die('ERROR: You need to be admin');
+}
+
+?>
+
+<div class="modal fade" id="confirm-delete" role="dialog" aria-labelledby="Delete" aria-hidden="true">
+    <div class="modal-dialog modal-sm">
+        <div class="modal-content">
+            <div class="modal-header">
+                <button type="button" class="close" data-dismiss="modal" aria-hidden="true">&times;</button>
+                <h5 class="modal-title" id="Delete">Confirm Delete</h5>
+            </div>
+            <div class="modal-body">
+                <p>Clicking Delete will remove device dependency from <strong class="modalhostname"></strong></p>
+            </div>
+            <div class="modal-footer">
+                <form role="form" class="remove_token_form">
+                    <button type="button" class="btn btn-default" data-dismiss="modal">Cancel</button>
+                    <button type="submit" class="btn btn-danger danger" id="hostdep-removal" data-target="hostdep-removal">Delete</button>
+                    <input type="hidden" name="row_id" id="delete-row_id" value="">
+                    <input type="hidden" name="device_id" id="delete-device_id" value="">
+                    <input type="hidden" name="parent_id" id="delete-parent_id" value="">
+                    <input type="hidden" name="confirm" id="confirm" value="yes">
+                </form>
+            </div>
+        </div>
+    </div>
+</div>
+
+<script>
+$('#hostdep-removal').click('', function(event) {
+    event.preventDefault();
+    var parent_id = $("#delete-parent_id").val();
+    var device_id = $("#delete-device_id").val();
+    var row_id = $("#delete-row_id").val();
+    $("#modal_hostname").text();
+    $.ajax({
+        type: 'POST',
+        url: 'ajax_form.php',
+        data: { type: "delete-host-dependency", device_id: device_id },
+        dataType: "json",
+        success: function(output) {
+            if (output.status == 0) {
+                toastr.success(output.message);
+                $("#confirm-delete").modal('hide');
+                // Clear the host association from html
+                $('[data-row-id=' + row_id + ']').find('.parenthost').text('None');
+            } else {
+                toastr.error(output.message);
+            }
+        },
+        error: function() {
+            toastr.error('The device dependency could not be deleted.');
+            $("#confirm-delete").modal('hide');
+        }
+    });
+});
+</script>