]> git.mxchange.org Git - friendica.git/commit
projects / friendica.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9bc2c5a) | patch
Fix security vulnerability in admin modules
authorHypolite Petovan <hypolite@mrpetovan.com>
Tue, 8 Sep 2020 14:44:27 +0000 (10:44 -0400)
committerHypolite Petovan <hypolite@mrpetovan.com>
Tue, 8 Sep 2020 16:27:43 +0000 (12:27 -0400)
commit3efa8648c565f7a4bd24436a55336e7ca70fcb06
treee583f6d423b3cbe2f25720199f12548f7b8833d1tree | snapshot
parent9bc2c5a52e8fd0bf09774a36c40174ae758f6f98commit | diff
Fix security vulnerability in admin modules

- The Module\BaseAdmin::post method checked credentials but didn't abort the process when it failed
- Created Module\BaseAdmin::checkAdminAccess method
12 files changed:
src/Module/Admin/Addons/Details.php diff | blob | history
src/Module/Admin/Blocklist/Contact.php diff | blob | history
src/Module/Admin/Blocklist/Server.php diff | blob | history
src/Module/Admin/Features.php diff | blob | history
src/Module/Admin/Item/Delete.php diff | blob | history
src/Module/Admin/Logs/Settings.php diff | blob | history
src/Module/Admin/PhpInfo.php diff | blob | history
src/Module/Admin/Site.php diff | blob | history
src/Module/Admin/Themes/Embed.php diff | blob | history
src/Module/Admin/Tos.php diff | blob | history
src/Module/Admin/Users.php diff | blob | history
src/Module/BaseAdmin.php diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.