dolibarr

mirror of https://github.com/Dolibarr/dolibarr.git synced 2025-12-26 19:31:31 +01:00

Files

Florian HENRY 77a9d4eb71 Start fix [ bug #1437 ] Securitu Issue

Some of them can be fix, because GETPOST even with 'alpha' test do not
warn if input is
"2%2F0%2F1234%3cscript%3ealert%2893275%29%3c%2fscript%3e"
for exemple

I don't have magical solution for this kind of security issue

2014-06-09 12:34:10 +02:00

admin

Qual: Uniformise name of include files we use to share common code found

2013-09-23 13:22:28 +02:00

class

Start fix [ bug #1437 ] Securitu Issue

2014-06-09 12:34:10 +02:00

group

Qual: Replace deprecated call ->form_confirm with ->formconfirm

2013-09-06 11:51:24 +02:00

clicktodial.php

Fix: convert line delimiters

2013-06-24 17:34:22 +02:00

fiche.php

Start fix [ bug #1437 ] Securitu Issue

2014-06-09 12:34:10 +02:00

hierarchy.php

Fix: Use last name and not name.

2014-05-30 13:34:51 +02:00

home.php

Fix: No error once multicompany module has been removed.

2014-05-30 13:08:01 +02:00

index.php

Fix: Filter on status

2014-05-30 12:32:19 +02:00

info.php

Prepare move to other licence. For the moment all answers for licence

2013-01-16 15:36:08 +01:00

ldap.php

english language standardization

2013-02-23 15:26:39 +01:00

logout.php

Merge remote-tracking branch 'origin/3.4' into develop

2013-06-24 20:02:02 +02:00

note.php

Fixed user note with new update note API

2013-04-20 06:43:13 +02:00

param_ihm.php

Fix: business rule to protect button and action was not synchronized

2013-11-24 13:40:33 +01:00

passwordforgotten.php

Comment code of a deprecated variable.

2013-08-07 20:56:10 +02:00

perms.php

Removed some FIXME

2013-12-15 14:26:27 +01:00