starred/control-pane
1
0
Fork 0
mirror of https://github.com/clonos/control-pane.git synced 2026-04-27 05:35:55 +03:00
Code Issues 24 Projects Releases Packages Wiki Activity

[GH-ISSUE #27] Security issue #20

New issue
Closed
opened 2026-03-02 03:21:19 +03:00 by kerem · 3 comments
kerem commented 2026-03-02 03:21:19 +03:00
Owner
Copy link

Originally created by @bozhinov on GitHub (Jan 19, 2021).
Original GitHub issue: https://github.com/clonos/control-pane/issues/27

github.com/clonos/control-pane@ae73df7b69/php/clonos.php (L122)

Hello,
I would add additional validation here as the cookie value is directly used for the include.

Thanks for the code.
I m still reviewing it but seems to be what I need.

Momchil

Originally created by @bozhinov on GitHub (Jan 19, 2021). Original GitHub issue: https://github.com/clonos/control-pane/issues/27 https://github.com/clonos/control-pane/blob/ae73df7b69810d02bf126898074de5634a3e6f1a/php/clonos.php#L122 Hello, I would add additional validation here as the cookie value is directly used for the include. Thanks for the code. I m still reviewing it but seems to be what I need. Momchil
kerem closed this issue 2026-03-02 03:21:19 +03:00
kerem commented 2026-03-02 03:21:20 +03:00
Author
Owner
Copy link

@moveee commented on GitHub (Jan 19, 2021):

Fixed, thanks!

<!-- gh-comment-id:763087476 --> @moveee commented on GitHub (Jan 19, 2021): Fixed, thanks!
kerem commented 2026-03-02 03:21:20 +03:00
Author
Owner
Copy link

@olevole commented on GitHub (Jan 19, 2021):

just for clarification: github.com/clonos/control-pane@02b1652fa6 (diff-14648471e4) probably should fix any invalid data

<!-- gh-comment-id:763170673 --> @olevole commented on GitHub (Jan 19, 2021): just for clarification: https://github.com/clonos/control-pane/commit/02b1652fa6ce290550856d37d5d4394a9a4e7072#diff-14648471e4e7be6971642afbe7444876f220740a7e13300f1a0e4e6d4e6a989eR119-R126 probably should fix any invalid data
kerem commented 2026-03-02 03:21:20 +03:00
Author
Owner
Copy link

@bozhinov commented on GitHub (Jan 20, 2021):

It will.
always happy to see a quick response.

I ll give it another look once that WIP becomes RELEASE

<!-- gh-comment-id:763389019 --> @bozhinov commented on GitHub (Jan 20, 2021): It will. always happy to see a quick response. I ll give it another look once that WIP becomes RELEASE
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
bozhinov-Fix
revert-31-master
No results found.
Labels
Clear labels   
pull-request

Mirrored from GitHub Pull Request

No labels
pull-request
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/control-pane#20
No description provided.