aboutsummaryrefslogtreecommitdiffstatshomepage
path: root/inc/html.inc.php
diff options
context:
space:
mode:
authorPim van den Berg2010-01-01 19:36:31 +0100
committerPim van den Berg2010-01-01 19:36:31 +0100
commitbc31ed0e4647a568a1596cc2e09664675479a70d (patch)
tree9670e334534e18a9588e18d3feabbcb3a67e734e /inc/html.inc.php
parentadd swap_io support (diff)
downloadapt-panopticon_cgp-bc31ed0e4647a568a1596cc2e09664675479a70d.zip
apt-panopticon_cgp-bc31ed0e4647a568a1596cc2e09664675479a70d.tar.gz
apt-panopticon_cgp-bc31ed0e4647a568a1596cc2e09664675479a70d.tar.bz2
apt-panopticon_cgp-bc31ed0e4647a568a1596cc2e09664675479a70d.tar.xz
better validation of possible user input (get)
Diffstat (limited to 'inc/html.inc.php')
-rw-r--r--inc/html.inc.php13
1 files changed, 8 insertions, 5 deletions
diff --git a/inc/html.inc.php b/inc/html.inc.php
index e93cc66..e38ca8e 100644
--- a/inc/html.inc.php
+++ b/inc/html.inc.php
@@ -1,7 +1,10 @@
1<?php 1<?php
2 2
3# html related functions
4
3require_once 'conf/common.inc.php'; 5require_once 'conf/common.inc.php';
4require_once 'inc/rrdtool.class.php'; 6require_once 'inc/rrdtool.class.php';
7require_once 'inc/functions.inc.php';
5require_once 'inc/collectd.inc.php'; 8require_once 'inc/collectd.inc.php';
6 9
7function html_start() { 10function html_start() {
@@ -78,15 +81,15 @@ function host_summary($hosts) {
78 81
79 82
80function breadcrumbs() { 83function breadcrumbs() {
81 if (isset($_GET['h'])) 84 if (validate_get($_GET['h'], 'host'))
82 $path = ' - '.ucfirst($_GET['h']); 85 $path = ' - '.ucfirst($_GET['h']);
83 if (isset($_GET['p'])) 86 if (validate_get($_GET['p'], 'plugin'))
84 $path .= ' - '.ucfirst($_GET['p']); 87 $path .= ' - '.ucfirst($_GET['p']);
85 if (isset($_GET['pi'])) 88 if (validate_get($_GET['pi'], 'pinstance'))
86 $path .= ' - '.$_GET['pi']; 89 $path .= ' - '.$_GET['pi'];
87 if (isset($_GET['t']) && isset($_GET['p']) && $_GET['t'] != $_GET['p']) 90 if (validate_get($_GET['t'], 'type') && validate_get($_GET['p'], 'plugin') && $_GET['t'] != $_GET['p'])
88 $path .= ' - '.$_GET['t']; 91 $path .= ' - '.$_GET['t'];
89 if (isset($_GET['ti'])) 92 if (validate_get($_GET['ti'], 'tinstance'))
90 $path .= ' - '.$_GET['ti']; 93 $path .= ' - '.$_GET['ti'];
91 94
92 return $path; 95 return $path;
generated by cgit v1.1 at 2024-04-26 22:43:20 +0000