1. 22 Nov, 2021 3 commits
  2. 19 Nov, 2021 1 commit
  3. 18 Nov, 2021 1 commit
  4. 17 Nov, 2021 2 commits
  5. 16 Nov, 2021 3 commits
  6. 08 Nov, 2021 1 commit
  7. 05 Nov, 2021 1 commit
  8. 04 Nov, 2021 4 commits
  9. 03 Nov, 2021 1 commit
  10. 27 Oct, 2021 1 commit
  11. 26 Oct, 2021 1 commit
  12. 22 Oct, 2021 4 commits
  13. 21 Oct, 2021 1 commit
  14. 19 Oct, 2021 2 commits
  15. 18 Oct, 2021 2 commits
  16. 15 Oct, 2021 4 commits
  17. 14 Oct, 2021 1 commit
  18. 13 Oct, 2021 4 commits
  19. 12 Oct, 2021 3 commits
    • alaunois's avatar
      Mon 10989 fix side effect (#10258) · 8115fc68
      alaunois authored
      
      
      * fix(conf) fix side effect on config list pages
      
      * fix(conf) fix side effect on monitoring and admin list pages
      
      * fix(conf) fix fatal error when duplicating commands
      
      * Update www/include/common/common-Func.php
      
      Co-authored-by: default avatarAdrien Morais <31647811+adr-mo@users.noreply.github.com>
      8115fc68
    • alaunois's avatar
      fix(conf/host) fix enable/disable action anchor (#10164) · 521280ea
      alaunois authored
      Refs: MON-10989
      521280ea
    • alaunois's avatar
      Mon 10989 - CRSF token vulnerability (#10150) · bb48fe70
      alaunois authored
      
      
      * fix(secu) add fcts relative to csrf token validation
      
      * fix(secu) check csrf token validity when performing action in list pages
      (contact, contactTemplate, contactGroup, timeperiod)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (host, hostGroup, hostTemplate, hostCategories)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (serviceByHost, serviceByHostGroup, serviceTemplate, serviceGroup, serviceCategories, metaservice)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (command, connector)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (escalation, hostDependency, hostGroupDependency, serviceDependency,
      serviceGroupDependency, metaserviceDependency)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (snmp traps, groups, manufacturer)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (conf/pollers > centreonBroker, nagios, reources, servers)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (monitoring/performances > componentTemplates, graphTemplates,
      virtualMetrics)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (monitoring/dowtimes > comments/commentHost, dowtime, recurrentDowtime)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (admin/parameters > ldap, images)
      
      * fix(secu) check csrf token validity when performing action in list pages
      (admin/acl > actionAccess, groupAccess, menuAccess, resourcesAccess)
      
      * fix(secu) add token to individual enable/disable action icon
      
      * fix(secu) corrections following review comments
      
      * fix(secu) corrections following review comments
      
      * Update www/lib/HTML/QuickForm/HTML_QuickFormCustom.php
      
      * fix(secu) modify token verification and deletion following code review
      
      Co-authored-by: default avatarKevin Duret <kduret@centreon.com>
      bb48fe70