]> git.pld-linux.org Git - packages/cacti.git/blob - sql_injection_template_export.patch
projects / packages / cacti.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
- Add patch from date 2010/07/27 more info http://www.cacti.net/download_patches.php
[packages/cacti.git] / sql_injection_template_export.patch
1 --- cacti-0.8.7e/templates_export.php   2009-06-28 12:07:11.000000000 -0400
2 +++ cacti-fixed/templates_export.php    2010-04-17 14:08:42.000000000 -0400
3 @@ -49,6 +49,10 @@
4  function form_save() {
5         global $export_types;
6  
7 +    /* ================= input validation ================= */
8 +    input_validate_input_number(get_request_var_post("export_item_id"));
9 +    /* ==================================================== */
10 +
11         if (isset($_POST["save_component_export"])) {
12                 $xml_data = get_item_xml($_POST["export_type"], $_POST["export_item_id"], (((isset($_POST["include_deps"]) ? $_POST["include_deps"] : "") == "") ? false : true));
13  
Cacti is a PHP frontend for rrdtool
This page took 0.031657 seconds and 3 git commands to generate.