mirror of
https://github.com/librenms/librenms.git
synced 2024-10-07 16:52:45 +00:00
36431dd296
* Security fix: unauthorized access Affects nginx users: Moved php files outside of public html directory (Apache was protected by .htaccess) Affects all users: Some files did not check for authentication and could disclose some info. Better checks before including files from user input * git mv html/includes/ includes/html git mv html/pages/ includes/html/
35 lines
809 B
PHP
35 lines
809 B
PHP
<?php
|
|
|
|
require 'includes/html/graphs/common.inc.php';
|
|
|
|
$rrd_filename = rrd_name($device['hostname'], array('app', 'mysql', $app['app_id']));
|
|
|
|
$array = array(
|
|
'IBSRs' => 'Spin Rounds',
|
|
'IBSWs' => 'Spin Waits',
|
|
'IBOWs' => 'OS Waits',
|
|
);
|
|
|
|
$i = 0;
|
|
if (rrdtool_check_rrd_exists($rrd_filename)) {
|
|
foreach ($array as $ds => $var) {
|
|
$rrd_list[$i]['filename'] = $rrd_filename;
|
|
if (is_array($var)) {
|
|
$rrd_list[$i]['descr'] = $var['descr'];
|
|
} else {
|
|
$rrd_list[$i]['descr'] = $var;
|
|
}
|
|
|
|
$rrd_list[$i]['ds'] = $ds;
|
|
$i++;
|
|
}
|
|
} else {
|
|
echo "file missing: $file";
|
|
}
|
|
|
|
$colours = 'mixed';
|
|
$nototal = 1;
|
|
$unit_text = 'Semaphores';
|
|
|
|
require 'includes/html/graphs/generic_multi_simplex_seperated.inc.php';
|