Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix(security): vulnerabilities in common-Func.php #128

Merged
merged 1 commit into from
Dec 12, 2022
Merged

Fix(security): vulnerabilities in common-Func.php #128

merged 1 commit into from
Dec 12, 2022

Conversation

kduret
Copy link
Contributor

@kduret kduret commented Nov 8, 2022

Description

Fixed vulnerabilities in common functions

Fixes # MON-15398

Type of change

  • Patch fixing an issue (non-breaking change)
  • New functionality (non-breaking change)
  • Breaking change (patch or feature) that might cause side effects breaking part of the Software

Target serie

  • 21.04.x
  • 21.10.x
  • 22.04.x
  • 22.10.x (master)

How this pull request can be tested ?

  1. Go to “Monitoring > Performance > Graph”
  2. Select a graph
  3. Check that “refresh” icon is visible

Checklist

Community contributors & Centreon team

  • I have followed the coding style guidelines provided by Centreon
  • I have commented my code, especially new classes, functions or any legacy code modified. (docblock)
  • I have commented my code, especially hard-to-understand areas of the PR.
  • I have rebased my development branch on the base branch (master, maintenance).

@kduret
Copy link
Contributor Author

kduret commented Nov 8, 2022

migrated from https://github.com/centreon/centreon/pull/12043

@kduret kduret mentioned this pull request Nov 8, 2022
Draft
11 tasks
@github-actions
Copy link

github-actions bot commented Nov 8, 2022
edited
Loading

e2e-tests-report

13 files   -   68  13 suites   - 68   23m 1s ⏱️ - 3h 27m 36s
23 tests  - 202  21 ✔️  - 204  0 💤 ±0  2 +2 
23 runs   - 205  21 ✔️  - 207  0 💤 ±0  2 +2 

For more details on these failures, see this check.

Results for commit ad12964. ± Comparison against base commit f043bee.

This pull request removes 203 and adds 1 tests. Note that renamed tests count towards both. 
ACL Actions Access ‑ Creating Actions Access linked to one non admin access groups and to one admin access group
ACL Actions Access ‑ Creating action access by selecting authorized actions one by one
ACL Actions Access ‑ Creating actions access by selecting authorized actions by lots
ACL Actions Access ‑ Delete one existing Actions access record
ACL Actions Access ‑ Duplicate one existing Actions access record
ACL Actions Access ‑ Modify one existing Actions access record
ACL Actions Access ‑ Remove one access group from Actions access
ACL Menus Access administration ‑ Creating ACL Menu Access linked to several access groups
ACL Menus Access administration ‑ Delete one existing Menu access
ACL Menus Access administration ‑ Disable one existing Menu access
…

Check health of the Image APIs ‑ Healthcheck of Image APIs

♻️ This comment has been updated with latest results.

tuntoja pushed a commit that referenced this pull request Nov 16, 2022
@sc979
fix(secu): add SQ pipeline timeout (#128)
0f7a733
@emabassi-ext emabassi-ext force-pushed the MON-migration-MON-15398-fix-xss-security-vulnerabilities-in-common-func-php branch from ad12964 to 58b5332 Compare November 16, 2022 10:11
@emabassi-ext emabassi-ext requested review from a team and callapa and removed request for a team November 16, 2022 10:11
@emabassi-ext emabassi-ext merged commit 9b2f7fa into develop Dec 12, 2022
@emabassi-ext emabassi-ext deleted the MON-migration-MON-15398-fix-xss-security-vulnerabilities-in-common-func-php branch December 12, 2022 11:04
emabassi-ext added a commit that referenced this pull request Dec 12, 2022
@kduret @emabassi-ext
Fix(security): vulnerabilities in common-Func.php (#128)
38f82b4 
Co-authored-by: elmahdiabbassi <emabbassi-ext@centreon.com>
emabassi-ext added a commit that referenced this pull request Dec 12, 2022
@kduret @emabassi-ext
Fix(security): vulnerabilities in common-Func.php (#128)
558803c 
Co-authored-by: elmahdiabbassi <emabbassi-ext@centreon.com>
emabassi-ext added a commit that referenced this pull request Dec 12, 2022
@kduret @emabassi-ext
Fix(security): vulnerabilities in common-Func.php (#128)
7f88f93 
Co-authored-by: elmahdiabbassi <emabbassi-ext@centreon.com>
sc979 added a commit to sc979/centreon that referenced this pull request Dec 12, 2022
@tuntoja @jeremyjaouen
@zguennoune02 @adr-mo @sc979 @chgautier @ataghzout @lpinsivy @lgcosta @hyahiaoui-ext
Rebase dev 22.04.x onto 22.04.x (centreon#147)
c4fb34c 
* chore(php version): fix warning (centreon#112)

* new workflow

* hotfixing jenkinsfile

* fix(comments): display correctly last comments (centreon#115)

* enh(chore): automate dependabot ticket creation (centreon#116)

* fix(chore): old dependabot's PR ticket creation (centreon#117)

* enh(feature-switch): fully manage feature switch (centreon#114)

* enh(feature-switch): fully manage feature switch

* fix(index): wrong variable used

* fix qabranch variable

* enh(chore): issueType, feature_team and issue description

* chore(version): prepare 22.04 serie (centreon#120)

* chore(version): prepare 22.04 serie

* Update Jenkinsfile

* fix(secu): add SQ pipeline timeout (centreon#128)

* fix(chore): use github action env usage (centreon#129)

* fix(build): disable centos8 packaging (centreon#130)

* fix(chore): dependabot github automation (centreon#131)

* alma8 enabled (centreon#132)

* feat(ui): Apply dark mode for widget host monitoring  (centreon#136)

* fix(css): fix ccs import (centreon#138)

* chore(version): prepare 22.04.next (centreon#140)

* Merge release-debian-22.04.0 into 22.04.x (centreon#145)

* fix debian

* Update Jenkinsfile

* Update Jenkinsfile

* add version check version of dependency and remove unused file

Co-authored-by: Zakaria GUENNOUNE <zguennoune@centreon.com>
Co-authored-by: Luiz Costa <me@luizgustavo.pro.br>

* enh(secu): update GPG key (centreon#126)

* fix(secu): change fingerprint key (centreon#127)

* Add configuration to build DEB package (centreon#137)

* add deb package

* fix project name

* fix package name

* fix package name

* add delivery

* fix : Issue with cross databases query when the name contains some characters (centreon#144)

Co-authored-by: jeremyjaouen <61694165+jeremyjaouen@users.noreply.github.com>
Co-authored-by: Zakaria Guennoune <zguennoune@centreon.com>
Co-authored-by: Adrien Morais <31647811+adr-mo@users.noreply.github.com>
Co-authored-by: sc979 <34628915+sc979@users.noreply.github.com>
Co-authored-by: schapron <schapron@centreon.com>
Co-authored-by: Charles Gautier <33026375+chgautier@users.noreply.github.com>
Co-authored-by: ataghzout <97593248+ataghzout@users.noreply.github.com>
Co-authored-by: Laurent Pinsivy <lpinsivy@centreon.com>
Co-authored-by: Luiz Costa <me@luizgustavo.pro.br>
Co-authored-by: Zakaria Guennoune <83596451+zguennoune02@users.noreply.github.com>
Co-authored-by: hyahiaoui-ext <97593234+hyahiaoui-ext@users.noreply.github.com>
tuntoja pushed a commit that referenced this pull request Jan 4, 2023
@sc979
fix(secu): add SQ pipeline timeout (#128)
47c6e8b
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dmyios dmyios dmyios approved these changes

@callapa callapa Awaiting requested review from callapa

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@kduret @dmyios @emabassi-ext