mirror of
https://github.com/librenms/librenms.git
synced 2024-10-07 16:52:45 +00:00
Security fix: unauthorized access (#10091)
* Security fix: unauthorized access Affects nginx users: Moved php files outside of public html directory (Apache was protected by .htaccess) Affects all users: Some files did not check for authentication and could disclose some info. Better checks before including files from user input * git mv html/includes/ includes/html git mv html/pages/ includes/html/
This commit is contained in:
Tony Murray
GitHub
13
includes/html/pages/device/graphs/netstats_ip.inc.php
Normal file
13
includes/html/pages/device/graphs/netstats_ip.inc.php
Normal file
@@ -0,0 +1,13 @@
|
||||
<?php
|
||||
|
||||
if (rrdtool_check_rrd_exists(rrd_name($device['hostname'], 'netstats-ip'))) {
|
||||
$graph_title = 'IP Statistics';
|
||||
$graph_type = 'device_ip';
|
||||
|
||||
include 'includes/html/print-device-graph.php';
|
||||
|
||||
$graph_title = 'IP Fragmented Statistics';
|
||||
$graph_type = 'device_ip_fragmented';
|
||||
|
||||
include 'includes/html/print-device-graph.php';
|
||||
}
|
||||
Reference in New Issue
Block a user