github/myvesta
1
0
Fork 0
mirror of https://github.com/myvesta/vesta.git synced 2025-03-11 12:02:42 -07:00
Code Issues Packages Projects Releases Wiki Activity
6,549 Commits 2 Branches 41 Tags
0.9.9-0-5
Commit Graph

18 Commits

Author SHA1 Message Date
myvesta
93de22a0b3 Fix for CSRF in FileManager and UploadHandler 2021-09-04 15:31:34 +02:00
myvesta
92297f2fc2
Preventing CSRF in UploadHandler.php 2021-08-29 00:10:42 +02:00
myvesta
914b53ea1c
Getting hostname from $_SERVER['HTTP_HOST'] for UploadHandler 2021-08-15 14:11:14 +02:00
myvesta
3402071e95
Preventing uploads from other origin 
Credits to:  Fady Othman, Security Consultant # ZINAD IT
 2021-03-14 20:49:14 +01:00
Peca
db8b4ed21e Merge branch 'pr/34' 2019-08-10 17:09:42 +02:00
Serghey Rodin
b17b4b205d removed unnecessary single quotes for security reasons / thanks to Andrea Cardaci 2019-08-07 18:46:40 +03:00
dpeca
37d370390a
Update UploadHandler.php 2019-07-30 23:18:40 +02:00
Serghey Rodin
dd2a57e408 Vesta CP 0.9.8–20 rXSS to RCE / solves 2018-05-11 16:17:23 +03:00
Serghey Rodin
9a9dabb0c9 reverting back chunked upload feature 2018-01-18 18:20:22 +02:00
Serghey Rodin
3bed87ba15 Flatta and Diman fixes 2016-07-06 13:53:03 +03:00
Serghey Rodin
39e9b6397b Revert "[SECURITY] Fix OS command injection." 2015-12-11 21:14:49 +02:00
Flat
8e951ac72e 🔒 ♻️ Implement secure exec wrapper functions. 2015-12-02 21:30:04 +09:00
Serghey Rodin
d207b7a752 FM changes 2015-11-05 03:17:21 +02:00
Serghey Rodin
8cc1ddf101 filemanager fix 2015-11-02 15:31:36 +02:00
Serghey Rodin
5d070fc9a5 Fixes for FM 2015-10-28 16:39:39 +02:00
Serghey Rodin
7565e8217f FileManager stuff 2015-10-12 17:45:31 +03:00
Serghey Rodin
6e193e0852 FM updates 2015-09-18 17:45:03 +03:00
Serghey Rodin
067a2c862a The New Desing 2015-05-29 02:07:55 +03:00