This repository was archived by the owner on Dec 13, 2022. It is now read-only.
fix(secu) remove unused params or sanitize them in service pages #8040
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
sc979
force-pushed
the
MON-4326-fix-2-8-remove-params-in-service-pages
branch
from
0f9a989 to
b8fc47e
Compare
leoncx
approved these changes
Oct 24, 2019
16 tasks
loiclau
approved these changes
Oct 24, 2019
sc979
added a commit
that referenced
this pull request
Oct 31, 2019
* fix(secu): remove unused http parameters in service summary page * fix(secu): remove unused http parameters in service grid page * fix(secu): remove unused http parameters in service list page * improve regex filter
sc979
added a commit
that referenced
this pull request
Nov 5, 2019
#8029) * style and cleaning * enh(BE): use constants, style and replace filter parameter * enh(BE): convert function to static * fix(BE): fix broken query in serviceXML.php * fix(BE): restore old topcounter file * fix(BE): correct severity filter * fix(secu): remove unused http parameters in hostXML.php file for PHP5 (#8013) * fix(secu): protect from SQL injections hostXML.php for 2.8 (#8014) * fix(secu): remove unused topCounter files and folders (#8007) * fix(secu): remove unused params or sanitize them in service by hostgroup (#8030) * fix(secu): remove or sanitize http variables * fix(secu) remove unused params or sanitize them in service by SG pages (#8043) * fix(secu): remove unused http parameters in serviceGridBySGXML file * fix(secu): remove unused http parameters in serviceSummaryBySGXML file * fix(secu): remove unused params or sanitize them in hostgroups page (#8038) * fix(secu): remove unused http parameters in hostgroups page * fix(secu): remove unused XML template file (#8051) * fix(secu): remove unused params or sanitize them in service pages (#8040) * fix(secu): remove unused http parameters in service summary page * fix(secu): remove unused http parameters in service grid page * fix(secu): remove unused http parameters in service list page * fix(secu): protect from SQL injections serviceGridXML.php for 2.8 (#8056) * fix(secu): avoid SQL injection in serviceGridXML.php * fix(secu): remove unused http parameters in serviceXML.php file for 2.8 (#8060) * fix(secu): remove unused http parameters in serviceXML.php file * fix(secu): avoid SQL injection in hostgroupXML.php (#8058) * fix(secu): avoid SQL injection in serviceSummaryXML.php (#8057) * fix(secu): protect from SQL injections in service by serviceGroups XML files for 2.8 (#8059) * fix(secu): avoid SQL injection in serviceGridBySGXML.php * fix(secu): avoid SQL injection in serviceSummaryBySGXML.php
callapa
pushed a commit
that referenced
this pull request
Nov 12, 2019
#8029) * style and cleaning * enh(BE): use constants, style and replace filter parameter * enh(BE): convert function to static * fix(BE): fix broken query in serviceXML.php * fix(BE): restore old topcounter file * fix(BE): correct severity filter * fix(secu): remove unused http parameters in hostXML.php file for PHP5 (#8013) * fix(secu): protect from SQL injections hostXML.php for 2.8 (#8014) * fix(secu): remove unused topCounter files and folders (#8007) * fix(secu): remove unused params or sanitize them in service by hostgroup (#8030) * fix(secu): remove or sanitize http variables * fix(secu) remove unused params or sanitize them in service by SG pages (#8043) * fix(secu): remove unused http parameters in serviceGridBySGXML file * fix(secu): remove unused http parameters in serviceSummaryBySGXML file * fix(secu): remove unused params or sanitize them in hostgroups page (#8038) * fix(secu): remove unused http parameters in hostgroups page * fix(secu): remove unused XML template file (#8051) * fix(secu): remove unused params or sanitize them in service pages (#8040) * fix(secu): remove unused http parameters in service summary page * fix(secu): remove unused http parameters in service grid page * fix(secu): remove unused http parameters in service list page * fix(secu): protect from SQL injections serviceGridXML.php for 2.8 (#8056) * fix(secu): avoid SQL injection in serviceGridXML.php * fix(secu): remove unused http parameters in serviceXML.php file for 2.8 (#8060) * fix(secu): remove unused http parameters in serviceXML.php file * fix(secu): avoid SQL injection in hostgroupXML.php (#8058) * fix(secu): avoid SQL injection in serviceSummaryXML.php (#8057) * fix(secu): protect from SQL injections in service by serviceGroups XML files for 2.8 (#8059) * fix(secu): avoid SQL injection in serviceGridBySGXML.php * fix(secu): avoid SQL injection in serviceSummaryBySGXML.php
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Pull Request Template
Description
Security fix which remove unused http parameters (eg: $_GET) or sanitize them in service pages
Fixes # (none)
Type of change
Target serie
How this pull request can be tested ?
please contact me
Checklist
Community contributors & Centreon team
Centreon team only