Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

sql injection and session fixation vulerability fixes #1764

Merged
merged 29 commits into from
Feb 4, 2017
Merged

sql injection and session fixation vulerability fixes #1764

merged 29 commits into from
Feb 4, 2017

Conversation

kylejohnson
Copy link
Member

  • SQL injection is addressed by sanitizing inputs and using real prepared statements (not emulating them).
  • Session fixation is addressed by regenerating the session id after a successful log in.

Isaac Connor and others added 29 commits December 6, 2016 09:38
fix detection of LIBSWRESAMPLE
0b3ba0a
Merge branch 'master' of github.com:ZoneMinder/ZoneMinder
fbc4735
Merge branch 'master' of github.com:ZoneMinder/ZoneMinder
75b8c35
Add testing for limit, sortField and all the filters to ensure that t…
587fd16 
…hey are valid.
check limit for a valid integer and complain if not.
e7d0861
Merge branch 'master' into fix_sql_injection
d600eb0
fix missing ; and test for integer string in limit
c8009ba
remove extra ?
7c84e24
test for integer string as well
b5e4c94
Merge branch 'master' of github.com:connortechnology/ZoneMinder
af4cfd0
Merge branch 'master' of github.com:ZoneMinder/ZoneMinder
1ff7ed3
set http_only flag in cookie settings
69c39f8
Merge branch 'master' into fix_sql_injection
12af44f
revert cmake code that got in from h264
54f91d7
fix tabs
ad157cf
On successful login, tell php to regenerate the session id
794043c
@kylejohnson
Merge pull request #4 from connortechnology/regenerate_session
a0958f9 
On successful login, tell php to regenerate the session id
@kylejohnson
Merge pull request #1 from connortechnology/cookie_http_only
0e7794f 
set http_only flag in cookie settings
Merge branch 'master' of github.com:ZoneMinder/ZoneMinder-Pro
c1e0575
@kylejohnson
Merge branch 'master' of github.com:ZoneMinder/ZoneMinder
746a096
Merge branch 'master' into fix_sql_injection
a8d1450
Merge branch 'master' of github.com:ConnorTechnology/ZoneMinder-Pro
b5e9957
turn whatever gets output into html escaped html so that nothing gets…
41dab07 
… revealed
Merge branch 'master' into fix_sql_injection
3437f23
fix typo fileFields => filterFields
9135da9
@kylejohnson
Tell PDO to use real prepared statements.
6b3a53e 
This makes sure the statement and the values aren't
parsed by PHP before sending it to the MySQL server.

See https://stackoverflow.com/questions/60174/how-can-i-prevent-sql-injection-in-php
and https://secure.php.net/manual/en/pdo.setattribute.php
@kylejohnson
Merge pull request #7 from ZoneMinder/pdo-emulated-prepares
024dd54 
Tell PDO to use real prepared statements.
Merge pull request #6 from connortechnology/log_xss_fixes2
c5906a5 
Log xss fixes2
@kylejohnson
Merge pull request #2 from connortechnology/fix_sql_injection
5804cd2 
Sanitize input parameters
@knight-of-ni
Copy link
Member

This was previously approved in the Pro fork. Merging...

@knight-of-ni knight-of-ni merged commit 8feac17 into master Feb 4, 2017
@kylejohnson kylejohnson deleted the vulerability-fixes branch February 5, 2017 22:05
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@kylejohnson @knight-of-ni