mirror of
https://github.com/librenms/librenms.git
synced 2024-10-07 16:52:45 +00:00
36431dd296
* Security fix: unauthorized access Affects nginx users: Moved php files outside of public html directory (Apache was protected by .htaccess) Affects all users: Some files did not check for authentication and could disclose some info. Better checks before including files from user input * git mv html/includes/ includes/html git mv html/pages/ includes/html/
39 lines
968 B
PHP
39 lines
968 B
PHP
<?php
|
|
|
|
require 'includes/html/graphs/common.inc.php';
|
|
|
|
$rrd_filename = rrd_name($device['hostname'], array('app', 'mysql', $app['app_id']));
|
|
|
|
$array = array(
|
|
'IBILog' => 'AIO Log',
|
|
'IBISc' => 'AIO Sync',
|
|
'IBIFLg' => 'Buf Pool Flush',
|
|
'IBFBl' => 'Log Flushes',
|
|
'IBIIAo' => 'Insert Buf AIO Read',
|
|
'IBIAd' => 'Normal AIO Read',
|
|
'IBIAe' => 'Normal AIO Writes',
|
|
);
|
|
|
|
$i = 0;
|
|
if (rrdtool_check_rrd_exists($rrd_filename)) {
|
|
foreach ($array as $ds => $var) {
|
|
$rrd_list[$i]['filename'] = $rrd_filename;
|
|
if (is_array($var)) {
|
|
$rrd_list[$i]['descr'] = $var['descr'];
|
|
} else {
|
|
$rrd_list[$i]['descr'] = $var;
|
|
}
|
|
|
|
$rrd_list[$i]['ds'] = $ds;
|
|
$i++;
|
|
}
|
|
} else {
|
|
echo "file missing: $file";
|
|
}
|
|
|
|
$colours = 'mixed';
|
|
$nototal = 1;
|
|
$unit_text = '';
|
|
|
|
require 'includes/html/graphs/generic_multi_simplex_seperated.inc.php';
|