mirror/librenms-librenms
1
0
Fork 0
mirror of https://github.com/librenms/librenms.git synced 2024-10-07 16:52:45 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
19,288 Commits 47 Branches 151 Tags
4e5355b11d02446402bf84cba35a68faa6273867
Commit Graph

9 Commits

Author SHA1 Message Date
PipoCanaja
4c9d4eefd8 XSS fixes (#13780) 2022-02-13 20:54:58 +00:00
Jellyfrog
258505ed44 Apply fixes from StyleCI (#13224) 2021-09-10 20:09:53 +02:00
Tony Murray
6e19805bcb remove legacy json format function (#12583) 
* remove legacy json format function

* remove silly use
 2021-03-04 14:55:41 +01:00
Jellyfrog
20b4215204 Swich links to https (#12511) 
* Switch librenms links to https

* Convert librenms links in comments

* Switch gnu.org url to https

* switch php urls to https
 2021-02-09 00:29:04 +01:00
Jellyfrog
0d56bbd946 Apply fixes from StyleCI (#12123) 2020-09-21 15:51:53 +02:00
Jellyfrog
82f43cb98d Apply fixes from StyleCI (#12120) 2020-09-21 15:40:17 +02:00
Jellyfrog
69280b3501 Fix dashboard html escaping and javascript redirect (#11370) 2020-04-02 23:33:18 +02:00
Tony Murray
e99f421511 Remove legacy auth usage of $_SESSION (#10491) 
* Remove auth use of $_SESSION

Will break plugins that depend on $_SESSION, Weathermap was already fixed.
Port them to use Auth::check()/Auth::user()/Auth:id()

* revert accidental replacement
 2019-08-05 14:16:05 -05:00
Tony Murray
36431dd296 Security fix: unauthorized access (#10091) 
* Security fix: unauthorized access
Affects nginx users:
Moved php files outside of public html directory (Apache was protected by .htaccess)

Affects all users:
Some files did not check for authentication and could disclose some info.
Better checks before including files from user input

* git mv html/includes/ includes/html
git mv html/pages/ includes/html/
 2019-04-11 23:26:42 -05:00