This repository has been archived by the owner on Dec 13, 2022. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 240
fix(secu): remove vulnerable unused topcounter file #8007
Merged
sc979
merged 1 commit into
MON-4187-fix-18.10-sql-injections-in-monitoring-pages
from
MON-4320-remove-unused-topcounter-file
Oct 23, 2019
Merged
fix(secu): remove vulnerable unused topcounter file #8007
sc979
merged 1 commit into
MON-4187-fix-18.10-sql-injections-in-monitoring-pages
from
MON-4320-remove-unused-topcounter-file
Oct 23, 2019
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
sc979
requested review from
callapa,
loiclau,
kduret,
jdelpierre and
victorvassilev
October 18, 2019 13:05
sc979
added a commit
that referenced
this pull request
Oct 22, 2019
sc979
force-pushed
the
MON-4320-remove-unused-topcounter-file
branch
from
October 23, 2019 12:23
bbc00aa
to
98258a8
Compare
sc979
changed the base branch from
18.10.x
to
MON-4187-fix-18.10-sql-injections-in-monitoring-pages
October 23, 2019 12:23
loiclau
pushed a commit
that referenced
this pull request
Oct 24, 2019
16 tasks
sc979
added a commit
that referenced
this pull request
Oct 25, 2019
sc979
added a commit
that referenced
this pull request
Oct 28, 2019
sc979
added a commit
that referenced
this pull request
Oct 28, 2019
17 tasks
sc979
added a commit
that referenced
this pull request
Oct 29, 2019
sc979
added a commit
that referenced
this pull request
Oct 29, 2019
sc979
added a commit
that referenced
this pull request
Oct 30, 2019
sc979
added a commit
that referenced
this pull request
Oct 31, 2019
sc979
added a commit
that referenced
this pull request
Oct 31, 2019
sc979
added a commit
that referenced
this pull request
Nov 4, 2019
sc979
added a commit
that referenced
this pull request
Nov 5, 2019
#8029) * style and cleaning * enh(BE): use constants, style and replace filter parameter * enh(BE): convert function to static * fix(BE): fix broken query in serviceXML.php * fix(BE): restore old topcounter file * fix(BE): correct severity filter * fix(secu): remove unused http parameters in hostXML.php file for PHP5 (#8013) * fix(secu): protect from SQL injections hostXML.php for 2.8 (#8014) * fix(secu): remove unused topCounter files and folders (#8007) * fix(secu): remove unused params or sanitize them in service by hostgroup (#8030) * fix(secu): remove or sanitize http variables * fix(secu) remove unused params or sanitize them in service by SG pages (#8043) * fix(secu): remove unused http parameters in serviceGridBySGXML file * fix(secu): remove unused http parameters in serviceSummaryBySGXML file * fix(secu): remove unused params or sanitize them in hostgroups page (#8038) * fix(secu): remove unused http parameters in hostgroups page * fix(secu): remove unused XML template file (#8051) * fix(secu): remove unused params or sanitize them in service pages (#8040) * fix(secu): remove unused http parameters in service summary page * fix(secu): remove unused http parameters in service grid page * fix(secu): remove unused http parameters in service list page * fix(secu): protect from SQL injections serviceGridXML.php for 2.8 (#8056) * fix(secu): avoid SQL injection in serviceGridXML.php * fix(secu): remove unused http parameters in serviceXML.php file for 2.8 (#8060) * fix(secu): remove unused http parameters in serviceXML.php file * fix(secu): avoid SQL injection in hostgroupXML.php (#8058) * fix(secu): avoid SQL injection in serviceSummaryXML.php (#8057) * fix(secu): protect from SQL injections in service by serviceGroups XML files for 2.8 (#8059) * fix(secu): avoid SQL injection in serviceGridBySGXML.php * fix(secu): avoid SQL injection in serviceSummaryBySGXML.php
sc979
added a commit
that referenced
this pull request
Nov 6, 2019
sc979
added a commit
that referenced
this pull request
Nov 8, 2019
sc979
added a commit
that referenced
this pull request
Nov 12, 2019
sc979
added a commit
that referenced
this pull request
Nov 12, 2019
…ster (#8063) * fix(secu): remove unused topCounter files and folders (#8007) * fix(secu): remove unused http parameters in service by servicegroup summary XML (#8064) * fix(secu): remove or sanitize unused https arguments in service by servicegroup summary * fix(secu): Avoid SQL injections in service by servicegroup pages (#8065) * fix(secu): avoid SQL injection in serviceByServicegroupGridXML.php file * fix(secu): avoid SQL injection in serviceByServicegroupSummaryXML.php file * fix(secu): remove or sanitize unused https arguments in service by servicegroup GRID (#8066) * fix(secu): remove unused http parameters in services by hostgroup files (#8074) * fix(secu): sanitize or remove unused params in serviceSummaryBYHGXML file * fix(secu): sanitize or remove unused params in serviceGridBYHGXML file * fix(secu): remove unused http parameters in hostgroup xml.php (#8073) * fix(secu): remove unused http parameters in hostgroupXML.php file * fix(secu): remove unused http parameters in services files (#8078) * fix(secu): sanitize makeXMLForOneHost.php * fix(secu): sanitize makeXMLForOneService.php * fix(secu): better hadling session check * fix(secu): sanitize or remove unused params in serviceXML file * fix(secu): sanitize serviceGridXML.php * fix(secu): sanitize serviceSummaryXML.php * fix(secu): remove unused http parameters in hostXML file (#8079) * fix(secu): sanitize or remove unused params in hostXML file * fix(secu): prevent from sql injections in host page (#8087) * prevent sql injection in hostXML.php * replace uppercase table alias by lowercase * delete case duplicating the default case * replace array() with [] * fix(secu): prevent from sql injections from common xml model (#8083) * fix(secu): prevent from sql injections in services pages (#8082) * prevent sql injection in makeXMLForOneHostXML.php * prevent sql injection in makeXMLForOneServiceXML.php * prevent sql injection in serviceXML.php * prevent sql injection in serviceGridXML.php * prevent sql injection in serviceXML.php * prevent sql injection in serviceSummaryXML.php * remove debug and prepare second query * fix(secu): prevent from sql injections in hostgroupXML file (#8081) * fix(secu): avoid sql injections in hostgroupXML file * fix(UI): add the order param to the request * remove useless declarations * replace regexp with whitelist * add missing array declaration * fix(CI): sonar coding style issue
sc979
added a commit
that referenced
this pull request
Nov 12, 2019
…ster (#8063) * fix(secu): remove unused topCounter files and folders (#8007) * fix(secu): remove unused http parameters in service by servicegroup summary XML (#8064) * fix(secu): remove or sanitize unused https arguments in service by servicegroup summary * fix(secu): Avoid SQL injections in service by servicegroup pages (#8065) * fix(secu): avoid SQL injection in serviceByServicegroupGridXML.php file * fix(secu): avoid SQL injection in serviceByServicegroupSummaryXML.php file * fix(secu): remove or sanitize unused https arguments in service by servicegroup GRID (#8066) * fix(secu): remove unused http parameters in services by hostgroup files (#8074) * fix(secu): sanitize or remove unused params in serviceSummaryBYHGXML file * fix(secu): sanitize or remove unused params in serviceGridBYHGXML file * fix(secu): remove unused http parameters in hostgroup xml.php (#8073) * fix(secu): remove unused http parameters in hostgroupXML.php file * fix(secu): remove unused http parameters in services files (#8078) * fix(secu): sanitize makeXMLForOneHost.php * fix(secu): sanitize makeXMLForOneService.php * fix(secu): better hadling session check * fix(secu): sanitize or remove unused params in serviceXML file * fix(secu): sanitize serviceGridXML.php * fix(secu): sanitize serviceSummaryXML.php * fix(secu): remove unused http parameters in hostXML file (#8079) * fix(secu): sanitize or remove unused params in hostXML file * fix(secu): prevent from sql injections in host page (#8087) * prevent sql injection in hostXML.php * replace uppercase table alias by lowercase * delete case duplicating the default case * replace array() with [] * fix(secu): prevent from sql injections from common xml model (#8083) * fix(secu): prevent from sql injections in services pages (#8082) * prevent sql injection in makeXMLForOneHostXML.php * prevent sql injection in makeXMLForOneServiceXML.php * prevent sql injection in serviceXML.php * prevent sql injection in serviceGridXML.php * prevent sql injection in serviceXML.php * prevent sql injection in serviceSummaryXML.php * remove debug and prepare second query * fix(secu): prevent from sql injections in hostgroupXML file (#8081) * fix(secu): avoid sql injections in hostgroupXML file * fix(UI): add the order param to the request * remove useless declarations * replace regexp with whitelist * add missing array declaration * fix(CI): sonar coding style issue
sc979
added a commit
that referenced
this pull request
Nov 12, 2019
…ster (#8063) * fix(secu): remove unused topCounter files and folders (#8007) * fix(secu): remove unused http parameters in service by servicegroup summary XML (#8064) * fix(secu): remove or sanitize unused https arguments in service by servicegroup summary * fix(secu): Avoid SQL injections in service by servicegroup pages (#8065) * fix(secu): avoid SQL injection in serviceByServicegroupGridXML.php file * fix(secu): avoid SQL injection in serviceByServicegroupSummaryXML.php file * fix(secu): remove or sanitize unused https arguments in service by servicegroup GRID (#8066) * fix(secu): remove unused http parameters in services by hostgroup files (#8074) * fix(secu): sanitize or remove unused params in serviceSummaryBYHGXML file * fix(secu): sanitize or remove unused params in serviceGridBYHGXML file * fix(secu): remove unused http parameters in hostgroup xml.php (#8073) * fix(secu): remove unused http parameters in hostgroupXML.php file * fix(secu): remove unused http parameters in services files (#8078) * fix(secu): sanitize makeXMLForOneHost.php * fix(secu): sanitize makeXMLForOneService.php * fix(secu): better hadling session check * fix(secu): sanitize or remove unused params in serviceXML file * fix(secu): sanitize serviceGridXML.php * fix(secu): sanitize serviceSummaryXML.php * fix(secu): remove unused http parameters in hostXML file (#8079) * fix(secu): sanitize or remove unused params in hostXML file * fix(secu): prevent from sql injections in host page (#8087) * prevent sql injection in hostXML.php * replace uppercase table alias by lowercase * delete case duplicating the default case * replace array() with [] * fix(secu): prevent from sql injections from common xml model (#8083) * fix(secu): prevent from sql injections in services pages (#8082) * prevent sql injection in makeXMLForOneHostXML.php * prevent sql injection in makeXMLForOneServiceXML.php * prevent sql injection in serviceXML.php * prevent sql injection in serviceGridXML.php * prevent sql injection in serviceXML.php * prevent sql injection in serviceSummaryXML.php * remove debug and prepare second query * fix(secu): prevent from sql injections in hostgroupXML file (#8081) * fix(secu): avoid sql injections in hostgroupXML file * fix(UI): add the order param to the request * remove useless declarations * replace regexp with whitelist * add missing array declaration * fix(CI): sonar coding style issue
sc979
added a commit
that referenced
this pull request
Nov 12, 2019
…ster (#8063) * fix(secu): remove unused topCounter files and folders (#8007) * fix(secu): remove unused http parameters in service by servicegroup summary XML (#8064) * fix(secu): remove or sanitize unused https arguments in service by servicegroup summary * fix(secu): Avoid SQL injections in service by servicegroup pages (#8065) * fix(secu): avoid SQL injection in serviceByServicegroupGridXML.php file * fix(secu): avoid SQL injection in serviceByServicegroupSummaryXML.php file * fix(secu): remove or sanitize unused https arguments in service by servicegroup GRID (#8066) * fix(secu): remove unused http parameters in services by hostgroup files (#8074) * fix(secu): sanitize or remove unused params in serviceSummaryBYHGXML file * fix(secu): sanitize or remove unused params in serviceGridBYHGXML file * fix(secu): remove unused http parameters in hostgroup xml.php (#8073) * fix(secu): remove unused http parameters in hostgroupXML.php file * fix(secu): remove unused http parameters in services files (#8078) * fix(secu): sanitize makeXMLForOneHost.php * fix(secu): sanitize makeXMLForOneService.php * fix(secu): better hadling session check * fix(secu): sanitize or remove unused params in serviceXML file * fix(secu): sanitize serviceGridXML.php * fix(secu): sanitize serviceSummaryXML.php * fix(secu): remove unused http parameters in hostXML file (#8079) * fix(secu): sanitize or remove unused params in hostXML file * fix(secu): prevent from sql injections in host page (#8087) * prevent sql injection in hostXML.php * replace uppercase table alias by lowercase * delete case duplicating the default case * replace array() with [] * fix(secu): prevent from sql injections from common xml model (#8083) * fix(secu): prevent from sql injections in services pages (#8082) * prevent sql injection in makeXMLForOneHostXML.php * prevent sql injection in makeXMLForOneServiceXML.php * prevent sql injection in serviceXML.php * prevent sql injection in serviceGridXML.php * prevent sql injection in serviceXML.php * prevent sql injection in serviceSummaryXML.php * remove debug and prepare second query * fix(secu): prevent from sql injections in hostgroupXML file (#8081) * fix(secu): avoid sql injections in hostgroupXML file * fix(UI): add the order param to the request * remove useless declarations * replace regexp with whitelist * add missing array declaration * fix(CI): sonar coding style issue
callapa
pushed a commit
that referenced
this pull request
Nov 12, 2019
#8029) * style and cleaning * enh(BE): use constants, style and replace filter parameter * enh(BE): convert function to static * fix(BE): fix broken query in serviceXML.php * fix(BE): restore old topcounter file * fix(BE): correct severity filter * fix(secu): remove unused http parameters in hostXML.php file for PHP5 (#8013) * fix(secu): protect from SQL injections hostXML.php for 2.8 (#8014) * fix(secu): remove unused topCounter files and folders (#8007) * fix(secu): remove unused params or sanitize them in service by hostgroup (#8030) * fix(secu): remove or sanitize http variables * fix(secu) remove unused params or sanitize them in service by SG pages (#8043) * fix(secu): remove unused http parameters in serviceGridBySGXML file * fix(secu): remove unused http parameters in serviceSummaryBySGXML file * fix(secu): remove unused params or sanitize them in hostgroups page (#8038) * fix(secu): remove unused http parameters in hostgroups page * fix(secu): remove unused XML template file (#8051) * fix(secu): remove unused params or sanitize them in service pages (#8040) * fix(secu): remove unused http parameters in service summary page * fix(secu): remove unused http parameters in service grid page * fix(secu): remove unused http parameters in service list page * fix(secu): protect from SQL injections serviceGridXML.php for 2.8 (#8056) * fix(secu): avoid SQL injection in serviceGridXML.php * fix(secu): remove unused http parameters in serviceXML.php file for 2.8 (#8060) * fix(secu): remove unused http parameters in serviceXML.php file * fix(secu): avoid SQL injection in hostgroupXML.php (#8058) * fix(secu): avoid SQL injection in serviceSummaryXML.php (#8057) * fix(secu): protect from SQL injections in service by serviceGroups XML files for 2.8 (#8059) * fix(secu): avoid SQL injection in serviceGridBySGXML.php * fix(secu): avoid SQL injection in serviceSummaryBySGXML.php
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Pull Request Template
Description
remove vulnerable unused file, since the new topCounter, by deleting it
Fixes # (none)
Type of change
Target serie
How this pull request can be tested ?
please contact me
Checklist
Community contributors & Centreon team
Centreon team only