librenms-librenms

mirror/librenms-librenms

Fork 0

mirror of https://github.com/librenms/librenms.git synced 2024-10-07 16:52:45 +00:00

Commit Graph

Author	SHA1	Message	Date
Jellyfrog	32f72bc1ab	Fix SQL injections in ajax_table.php (#11920 ) * Fix SQL injections via searchPhrase parameter * Fix SQL injections via address parameter * Fix sort injection Co-authored-by: Tony Murray <murraytony@gmail.com>	2020-07-10 09:17:09 -05:00
Tony Murray	36431dd296	Security fix: unauthorized access (#10091 ) * Security fix: unauthorized access Affects nginx users: Moved php files outside of public html directory (Apache was protected by .htaccess) Affects all users: Some files did not check for authentication and could disclose some info. Better checks before including files from user input * git mv html/includes/ includes/html git mv html/pages/ includes/html/	2019-04-11 23:26:42 -05:00

Author

SHA1

Message

Date

Jellyfrog

32f72bc1ab

Fix SQL injections in ajax_table.php (#11920 )

* Fix SQL injections via searchPhrase parameter

* Fix SQL injections via address parameter

* Fix sort injection

Co-authored-by: Tony Murray <murraytony@gmail.com>

2020-07-10 09:17:09 -05:00

Tony Murray

36431dd296

Security fix: unauthorized access (#10091 )

* Security fix: unauthorized access
Affects nginx users:
Moved php files outside of public html directory (Apache was protected by .htaccess)

Affects all users:
Some files did not check for authentication and could disclose some info.
Better checks before including files from user input

* git mv html/includes/ includes/html
git mv html/pages/ includes/html/

2019-04-11 23:26:42 -05:00

2 Commits