mirror/librenms-librenms
1
0
Fork 0
mirror of https://github.com/librenms/librenms.git synced 2024-10-07 16:52:45 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
Files
f2b6aaeb11f437bd4845a9a57c19d940ea9e4b2c
librenms-librenms/includes/html/pages/health.inc.php
Tony Murray 36431dd296 Security fix: unauthorized access (#10091) 
* Security fix: unauthorized access
Affects nginx users:
Moved php files outside of public html directory (Apache was protected by .htaccess)

Affects all users:
Some files did not check for authentication and could disclose some info.
Better checks before including files from user input

* git mv html/includes/ includes/html
git mv html/pages/ includes/html/
2019-04-11 23:26:42 -05:00

191 lines
4.8 KiB
PHP
Raw Blame History

<?php
/*
* LibreNMS
*
* This program is free software: you can redistribute it and/or modify it
* under the terms of the GNU General Public License as published by the
* Free Software Foundation, either version 3 of the License, or (at your
* option) any later version. Please see LICENSE.txt at the top level of
* the source code distribution for details.
*
* @package LibreNMS
* @subpackage webui
* @link http://librenms.org
* @copyright 2017 LibreNMS
* @author LibreNMS Contributors
*/
$no_refresh = true;
$datas = array('mempool','processor','storage');
if ($used_sensors['temperature']) {
$datas[] = 'temperature';
}
if ($used_sensors['charge']) {
$datas[] = 'charge';
}
if ($used_sensors['humidity']) {
$datas[] = 'humidity';
}
if ($used_sensors['fanspeed']) {
$datas[] = 'fanspeed';
}
if ($used_sensors['voltage']) {
$datas[] = 'voltage';
}
if ($used_sensors['frequency']) {
$datas[] = 'frequency';
}
if ($used_sensors['runtime']) {
$datas[] = 'runtime';
}
if ($used_sensors['current']) {
$datas[] = 'current';
}
if ($used_sensors['power']) {
$datas[] = 'power';
}
if ($used_sensors['power_consumed']) {
$datas[] = 'power_consumed';
}
if ($used_sensors['power_factor']) {
$datas[] = 'power_factor';
}
if ($used_sensors['dbm']) {
$datas[] = 'dbm';
}
if ($used_sensors['load']) {
$datas[] = 'load';
}
if ($used_sensors['state']) {
$datas[] = 'state';
}
if ($used_sensors['count']) {
$datas[] = 'count';
}
if ($used_sensors['signal']) {
$datas[] = 'signal';
}
if ($used_sensors['snr']) {
$datas[] = 'snr';
}
if ($used_sensors['pressure']) {
$datas[] = 'pressure';
}
if ($used_sensors['cooling']) {
$datas[] = 'cooling';
}
if ($used_sensors['toner']) {
$datas[] = 'toner';
}
if ($used_sensors['delay']) {
$datas[] = 'delay';
}
if ($used_sensors['quality_factor']) {
$datas[] = 'quality_factor';
}
if ($used_sensors['chromatic_dispersion']) {
$datas[] = 'chromatic_dispersion';
}
if ($used_sensors['ber']) {
$datas[] = 'ber';
}
if ($used_sensors['eer']) {
$datas[] = 'eer';
}
if ($used_sensors['waterflow']) {
$datas[] = 'waterflow';
}
$type_text['overview'] = "Overview";
$type_text['temperature'] = "Temperature";
$type_text['charge'] = "Battery Charge";
$type_text['humidity'] = "Humidity";
$type_text['mempool'] = "Memory";
$type_text['storage'] = "Storage";
$type_text['diskio'] = "Disk I/O";
$type_text['processor'] = "Processor";
$type_text['voltage'] = "Voltage";
$type_text['fanspeed'] = "Fanspeed";
$type_text['frequency'] = "Frequency";
$type_text['runtime'] = "Runtime";
$type_text['current'] = "Current";
$type_text['power'] = "Power";
$type_text['power_consumed'] = "Power Consumed";
$type_text['power_factor'] = "Power Factor";
$type_text['toner'] = "Toner";
$type_text['dbm'] = "dBm";
$type_text['load'] = "Load";
$type_text['state'] = "State";
$type_text['count'] = "Count";
$type_text['signal'] = "Signal";
$type_text['snr'] = "SNR";
$type_text['pressure'] = "Pressure";
$type_text['cooling'] = "Cooling";
$type_text['toner'] = 'Toner';
$type_text['delay'] = 'Delay';
$type_text['quality_factor'] = 'Quality factor';
$type_text['chromatic_dispersion'] = 'Chromatic Dispersion';
$type_text['ber'] = 'Bit Error Rate';
$type_text['eer'] = 'Energy Efficiency Ratio';
$type_text['waterflow'] = 'Water Flow Rate';
$active_metric = basename($vars['metric'] ?? 'processor');
if (!$vars['view']) {
$vars['view'] = "detail";
}
$link_array = array('page' => 'health');
$navbar = '<span style="font-weight: bold;">Health</span> &#187; ';
$sep = "";
foreach ($datas as $texttype) {
$metric = strtolower($texttype);
$navbar .= $sep;
if ($active_metric == $metric) {
$navbar .= '<span class="pagemenu-selected">';
}
$navbar .= generate_link($type_text[$metric], $link_array, array('metric'=> $metric, 'view' => $vars['view']));
if ($active_metric == $metric) {
$navbar .= '</span>';
}
$sep = ' | ';
}
unset($sep);
if ($vars['view'] == "graphs") {
$displayoptions = '<span class="pagemenu-selected">';
}
$displayoptions .= generate_link("Graphs", $link_array, ['metric'=> $active_metric, 'view' => "graphs"]);
if ($vars['view'] == "graphs") {
$displayoptions .= '</span>';
}
$displayoptions .= ' | ';
if ($vars['view'] != "graphs") {
$displayoptions .= '<span class="pagemenu-selected">';
}
$displayoptions .= generate_link("No Graphs", $link_array, ['metric'=> $active_metric, 'view' => "detail"]);
if ($vars['view'] != "graphs") {
$displayoptions .= '</span>';
}
$valid_metrics = array_merge(array_keys($used_sensors), [
'processor',
'storage',
'toner',
'mempool',
]);
if (in_array($active_metric, $valid_metrics)) {
include("includes/html/pages/health/$active_metric.inc.php");
} else {
echo("No sensors of type $active_metric found.");
}
Reference in New Issue View Git Blame Copy Permalink