Michael Kaufmann a862307bce Merge pull request from GHSA-x525-54hf-xr53 ...

* do not log unvalidated user-input to mysql-log (if enabled)

Signed-off-by: Michael Kaufmann <d00p@froxlor.org>

* clean log-text to only allow a subset of special characters

Signed-off-by: Michael Kaufmann <d00p@froxlor.org>

* clean log-text when selecting from database to avoid possible previously added malicious entries

Signed-off-by: Michael Kaufmann <d00p@froxlor.org>

---------

Signed-off-by: Michael Kaufmann <d00p@froxlor.org>

2024-05-03 07:56:40 +02:00

..

configfiles

disable pam auth in dovecot for debian bookworm (like the other distros do it)

2024-01-07 09:06:15 +01:00

formfields

correctly save pass_authorizationheader flag for php-configs if FCGID is used; correctly add 'FcgidPassHeader' for froxlor-vhost itself if set

2024-03-17 08:13:24 +01:00

Froxlor

Merge pull request from GHSA-x525-54hf-xr53

2024-05-03 07:56:40 +02:00

navigation

little work on installation; replace hardcoded strings with variables/constants; update dependencies

2023-11-30 11:41:20 +01:00

tablelisting

domains in php-configs are not sortable

2023-12-19 17:17:51 +01:00

ajax.php

adjust Request-class methods to be more flexible

2022-12-30 21:43:27 +01:00

config.example.inc.php

add description for 'disable_otp_security_check' flag in config.example.inc.php

2023-11-10 14:35:44 +01:00

functions.php

include custom.css from config.json if preset correctly

2023-12-21 10:59:15 +01:00

index.html

add empty index.html file to all folders to avoid accidental folder-content disclosure if 'Options Indexes' is set for a (parent)folder containing froxlor in webserver-config

2022-03-24 14:35:30 +01:00

init.php

Fix "expires" option cannot have a year greater than 9999 (#1246)

2024-03-25 08:22:00 +01:00

tables.inc.php

remove wip backup-feature for later releases, see branch backup-feature

2023-09-17 13:19:00 +02:00