mirror/librenms-librenms
1
0
Fork 0
mirror of https://github.com/librenms/librenms.git synced 2024-10-07 16:52:45 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Sanitize report name in pdf.php (#10270)

Browse Source 
Authentication users could include arbitrary file.
This commit is contained in:
Tony Murray
2019-05-29 09:39:17 -05:00
committed by GitHub
parent f14b90a1ef
commit 54e4d0910a
5 changed files with 95 additions and 46 deletions
Download Patch File Download Diff File Expand all files Collapse all files

78
LibreNMS/Util/Clean.php Normal file
View File

@@ -0,0 +1,78 @@
<?php
/**
* Clean.php
*
* -Description-
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*
* @package LibreNMS
* @link http://librenms.org
* @copyright 2019 Tony Murray
* @author Tony Murray <murraytony@gmail.com>
*/
namespace LibreNMS\Util;
use HTMLPurifier;
use HTMLPurifier_Config;
use LibreNMS\Config;
class Clean
{
/**
* Sanitize file name by removing all invalid characters.
* Does not make the string safe for javascript or sql!
*
* @param string $file
* @return string|string[]|null
*/
public static function fileName($file)
{
return preg_replace('/[^a-zA-Z0-9\-._]/', '', $file);
}
/**
* Clean a string for display in an html page.
* For use in non-blade pages
*
* @param $value
* @param array $purifier_config (key, value pair)
* @return string
*/
public static function html($value, $purifier_config = [])
{
/** @var HTMLPurifier $purifier */
static $purifier;
// If $purifier_config is non-empty then we don't want
// to convert html tags and allow these to be controlled
// by purifier instead.
if (empty($purifier_config)) {
$value = htmlentities($value);
}
if (!isset($purifier)) {
// initialize HTML Purifier here since this is the only user
$p_config = HTMLPurifier_Config::createDefault();
$p_config->set('Cache.SerializerPath', Config::get('temp_dir', '/tmp'));
foreach ($purifier_config as $k => $v) {
$p_config->set($k, $v);
}
$purifier = new HTMLPurifier($p_config);
}
return $purifier->purify(stripslashes($value));
}
}

32
LibreNMS/Util/Html.php
View File

@@ -119,36 +119,4 @@ class Html
return $output; return $output;
} }
/**
* Clean a string for display in an html page.
*
* @param $value
* @param array $purifier_config (key, value pair)
* @return string
*/
public static function display($value, $purifier_config = [])
{
/** @var HTMLPurifier $purifier */
static $purifier;
// If $purifier_config is non-empty then we don't want
// to convert html tags and allow these to be controlled
// by purifier instead.
if (empty($purifier_config)) {
$value = htmlentities($value);
}
if (!isset($purifier)) {
// initialize HTML Purifier here since this is the only user
$p_config = HTMLPurifier_Config::createDefault();
$p_config->set('Cache.SerializerPath', Config::get('temp_dir', '/tmp'));
foreach ($purifier_config as $k => $v) {
$p_config->set($k, $v);
}
$purifier = new HTMLPurifier($p_config);
}
return $purifier->purify(stripslashes($value));
}
} }

2
app/Http/Controllers/Widgets/NotesController.php
View File

@@ -51,7 +51,7 @@ class NotesController extends WidgetController
'HTML.SafeIframe' => true, 'HTML.SafeIframe' => true,
'URI.SafeIframeRegexp' => '%^(https?:)?//%', 'URI.SafeIframeRegexp' => '%^(https?:)?//%',
]; ];
$output = Html::display(nl2br($settings['notes']), $purifier_config); $output = \LibreNMS\Util\Clean::html(nl2br($settings['notes']), $purifier_config);
return $output; return $output;
} }

27
html/pdf.php
View File

@@ -12,12 +12,12 @@
* the source code distribution for details. * the source code distribution for details.
*/ */
use LibreNMS\Authentication\LegacyAuth; use LibreNMS\Config;
$init_modules = array('web', 'auth'); $init_modules = ['web', 'auth'];
require realpath(__DIR__ . '/..') . '/includes/init.php'; require realpath(__DIR__ . '/..') . '/includes/init.php';
if (!LegacyAuth::check()) { if (!Auth::check()) {
die('Unauthorized'); die('Unauthorized');
} }
@@ -25,11 +25,13 @@ set_debug(strpos($_SERVER['PATH_INFO'], 'debug'));
$pdf = new TCPDF(PDF_PAGE_ORIENTATION, PDF_UNIT, PDF_PAGE_FORMAT, true, 'UTF-8', false); $pdf = new TCPDF(PDF_PAGE_ORIENTATION, PDF_UNIT, PDF_PAGE_FORMAT, true, 'UTF-8', false);
$pdf->SetCreator($config['project_name']); $project_name = Config::get('project_name');
$pdf->SetAuthor($config['project_name']);
$pdf->setFooterData(array(0, 64, 0), array(0, 64, 128)); $pdf->SetCreator($project_name);
$pdf->setHeaderFont(array(PDF_FONT_NAME_MAIN, '', PDF_FONT_SIZE_MAIN)); $pdf->SetAuthor($project_name);
$pdf->setFooterFont(array(PDF_FONT_NAME_DATA, '', PDF_FONT_SIZE_DATA)); $pdf->setFooterData([0, 64, 0], [0, 64, 128]);
$pdf->setHeaderFont([PDF_FONT_NAME_MAIN, '', PDF_FONT_SIZE_MAIN]);
$pdf->setFooterFont([PDF_FONT_NAME_DATA, '', PDF_FONT_SIZE_DATA]);
$pdf->SetDefaultMonospacedFont(PDF_FONT_MONOSPACED); $pdf->SetDefaultMonospacedFont(PDF_FONT_MONOSPACED);
$pdf->SetMargins(PDF_MARGIN_LEFT, PDF_MARGIN_TOP, PDF_MARGIN_RIGHT); $pdf->SetMargins(PDF_MARGIN_LEFT, PDF_MARGIN_TOP, PDF_MARGIN_RIGHT);
$pdf->SetHeaderMargin(PDF_MARGIN_HEADER); $pdf->SetHeaderMargin(PDF_MARGIN_HEADER);
@@ -38,11 +40,12 @@ $pdf->SetAutoPageBreak(true, PDF_MARGIN_BOTTOM);
$pdf->setImageScale(PDF_IMAGE_SCALE_RATIO); $pdf->setImageScale(PDF_IMAGE_SCALE_RATIO);
$pdf->setFontSubsetting(true); $pdf->setFontSubsetting(true);
$pdf->SetFont('helvetica', '', 14, '', true); $pdf->SetFont('helvetica', '', 14, '', true);
$pdf->setTextShadow(array('enabled' => false, 'depth_w' => 0.2, 'depth_h' => 0.2, 'color' => array(196, 196, 196), 'opacity' => 1, 'blend_mode' => 'Normal')); $pdf->setTextShadow(['enabled' => false, 'depth_w' => 0.2, 'depth_h' => 0.2, 'color' => [196, 196, 196], 'opacity' => 1, 'blend_mode' => 'Normal']);
if (isset($_GET['report']) && !empty($_GET['report'])) { if (!empty($_GET['report'])) {
$report = mres($_GET['report']); $report = \LibreNMS\Util\Clean::fileName($_GET['report']);
$pdf->SetHeaderData('../../../../../html/'.$config['title_image'], 40, ucfirst($report), $config['project_name'], array(0, 0, 0), array(0, 64, 128)); $image = base_path('html/' . Config::get('title_image'));
$pdf->SetHeaderData($image, 40, ucfirst($report), $project_name, [0, 0, 0], [0, 64, 128]);
include_once "includes/html/reports/$report.pdf.inc.php"; include_once "includes/html/reports/$report.pdf.inc.php";
} else { } else {
$report = 'report'; $report = 'report';

2
includes/common.php
View File

@@ -1523,7 +1523,7 @@ function clean($value, $strip_tags = true)
*/ */
function display($value, $purifier_config = []) function display($value, $purifier_config = [])
{ {
return Html::display($value, $purifier_config); return \LibreNMS\Util\Clean::html($value, $purifier_config);
} }
/** /**