lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-15 09:04:39 +00:00
Code Issues Packages Projects Releases Wiki Activity

Lobby / Dashboard / Monit widget - properly cleanse user input

Browse Source
This commit is contained in:
Ad Schellevis 2022-07-27 05:33:23 +02:00
parent dfdb51cafb
commit da562090df
1 changed files with 5 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
src/www/widgets/widgets/monit.widget.php
View File

@ -58,6 +58,7 @@ if ($_SERVER['REQUEST_METHOD'] === 'GET') {
header(url_safe('Location: /index.php'));
exit;
}
legacy_html_escape_form_data($pconfig);
?>
@ -146,9 +147,8 @@ $( document ).ready(function() {
}
<?php
// apply search filter
if (isset($config['widgets']['monitsearch'])) {
echo '$("#grid-monit").bootgrid("search", "' .
$config['widgets']['monitsearch'] . '");';
if (!empty($pconfig['monitsearch'])) {
echo '$("#grid-monit").bootgrid("search", "' .$pconfig['monitsearch'] . '");';
}
?>
setTimeout(monitStatusPoll, pollInterval);
@ -181,7 +181,7 @@ $( document ).ready(function() {
</div>
</td>
<td>
<input type="text" class="form-control" size="25" name="monitheight" id="monitheight" value="<?= $config['widgets']['monitheight'] ?>" />
<input type="text" class="form-control" size="25" name="monitheight" id="monitheight" value="<?= $pconfig['monitheight'] ?>" />
</td>
</tr>
<tr>
@ -191,7 +191,7 @@ $( document ).ready(function() {
</div>
</td>
<td>
<input type="text" class="form-control" size="25" name="monitsearch" id="monitsearch" value="<?= $config['widgets']['monitsearch'] ?>" />
<input type="text" class="form-control" size="25" name="monitsearch" id="monitsearch" value="<?= $pconfig['monitsearch'] ?>" />
</td>
</tr>
<tr>