mirror/librenms-librenms
1
0
Fork 0
mirror of https://github.com/librenms/librenms.git synced 2024-10-07 16:52:45 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

First effort in bringing some sanity

Browse Source
This commit is contained in:
f0o
2016-02-10 13:42:55 +00:00
parent da9f6e5343
commit 37dccb3932
2 changed files with 5 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
html/includes/vars.inc.php
View File

@@ -7,7 +7,7 @@ foreach ($_GET as $key => $get_var) {
$value = 'yes';
}
$vars[$name] = $value;
$vars[$name] = htmlentities($value);
}
}
@@ -23,7 +23,7 @@ else {
foreach ($segments as $pos => $segment) {
$segment = urldecode($segment);
if ($pos == '0') {
$vars['page'] = $segment;
$vars['page'] =htmlentities( $segment);
}
else {
list($name, $value) = explode('=', $segment);
@@ -31,15 +31,15 @@ foreach ($segments as $pos => $segment) {
$vars[$name] = yes;
}
else {
$vars[$name] = $value;
$vars[$name] = htmlentities($value);
}
}
}
foreach ($_GET as $name => $value) {
$vars[$name] = $value;
$vars[$name] = htmlentities($value);
}
foreach ($_POST as $name => $value) {
$vars[$name] = $value;
$vars[$name] = htmlentities($value);
}

8
html/index.php
View File

@@ -214,14 +214,6 @@ else {
<div class="col-md-12">
<?php
// To help debug the new URLs :)
if (isset($devel) || isset($vars['devel'])) {
echo("<pre>");
print_r($_GET);
print_r($vars);
echo("</pre>");
}
if ($_SESSION['authenticated']) {
// Authenticated. Print a page.
if (isset($vars['page']) && !strstr("..", $vars['page']) && is_file("pages/" . $vars['page'] . ".inc.php")) {