deon/phpldapadmin
1
0
Fork 0
Code Issues 36 Pull Requests Actions Packages Projects Releases Wiki Activity
phpldapadmin/lib
History
Genaro Contreras Gutierrez 08c21fe7ca
Prevent XSS attack since function get_request 
The $preventXSS parameter was added to the get_request function to avoid XSS attacks.
It was not set by default as $preventXSS=true, because it can affect fields such as passwords.

Using "htmlspecialchars" and "addslashes" functions of PHP.
2019-07-30 08:29:17 -07:00
..
AJAXTree.php
SF Bug #3036033 - Error if CN begins with a % sign
2011-04-29 12:08:38 +10:00
Attribute.php
SF Bug #3427748 - value id is ignored in select attribute
2012-09-05 20:02:14 +10:00
AttributeFactory.php
SF Feature #2931999 - Upload file and view for "picture" fields
2011-04-29 13:25:57 +10:00
BinaryAttribute.php
Remove CVS tags
2009-08-20 12:25:48 +10:00
blowfish.php
Remove CVS tags
2009-08-20 12:25:48 +10:00
common.php
SF Patch #3054517 - Suppress PHP 5.3 E_DEPRECATED exceptions
2010-11-16 20:47:07 +11:00
config_default.php
SF Patch #3391547 - Option for minmal mode
2011-10-06 12:31:12 +11:00
createlm.php
Latest SANDPIT - MERGE from CVS (MERGE-GIT)
2009-07-01 16:09:17 +10:00
DateAttribute.php
Remove CVS tags
2009-08-20 12:25:48 +10:00
DnAttribute.php
Remove CVS tags
2009-08-20 12:25:48 +10:00
ds_ldap_pla.php
Changed password_hash to pla_password_hash in a few places where it was still password_hash.
2014-10-07 14:25:32 -04:00
ds_ldap.php
Fixes #31 - Glue entries are not browsable through phpldapadmin
2019-04-19 21:01:02 +10:00
ds.php
Fix SASL implementation - enabled GSSAPI
2011-06-20 20:34:55 +10:00
emuhash_functions.php
SF Patch #3054517 - Suppress PHP 5.3 E_DEPRECATED exceptions
2010-11-16 20:47:07 +11:00
export_functions.php
SF Bug #3513210 - Export to VCARD only exports the last entry in the list
2012-09-05 21:57:17 +10:00
functions.php
Prevent XSS attack since function get_request
2019-07-30 08:29:17 -07:00
GidAttribute.php
Remove CVS tags
2009-08-20 12:25:48 +10:00
hooks.php
SF Bug #2853633 - activating hooks gives error undefined constant DEBUG_ENABLE
2009-09-08 15:38:49 +10:00
HTMLTree.php
Fix SASL implementation - enabled GSSAPI
2011-06-20 20:34:55 +10:00
import_functions.php
SF Bug #3448530 - Treat krbExtraData and krbPrincipalKey as binary
2012-09-04 15:09:24 +10:00
JpegAttribute.php
Remove CVS tags
2009-08-20 12:25:48 +10:00
ldap_error_codes.txt
Latest SANDPIT - MERGE from CVS (MERGE-GIT)
2009-07-01 16:09:17 +10:00
ldap_supported_oids.txt
Remove CVS tags
2009-08-20 12:25:48 +10:00
MassRender.php
HTML Validation work
2010-03-15 09:37:35 +11:00
MultiLineAttribute.php
Remove CVS tags
2009-08-20 12:25:48 +10:00
ObjectClassAttribute.php
Remove CVS tags
2009-08-20 12:25:48 +10:00
page.php
Remove SF branding
2019-04-21 23:37:10 +10:00
PageRender.php
Changed password_hash to pla_password_hash in a few places where it was still password_hash.
2014-10-07 14:25:32 -04:00
PasswordAttribute.php
Remove CVS tags
2009-08-20 12:25:48 +10:00
query_functions.php
Remove CVS tags
2009-08-20 12:25:48 +10:00
Query.php
SF Bug #3531956 - Search / Show Attributes must be lowercase
2012-09-05 22:44:46 +10:00
QueryRender.php
Fix for PHP 7.3 - deprecated continue in switch
2019-05-14 15:00:28 +10:00
RandomPasswordAttribute.php
Remove CVS tags
2009-08-20 12:25:48 +10:00
SambaPasswordAttribute.php
Remove CVS tags
2009-08-20 12:25:48 +10:00
schema_functions.php
Miscellaneous minor updates
2009-08-29 00:11:23 +10:00
SelectionAttribute.php
SF Bug #3427748 - value id is ignored in select attribute
2012-09-05 20:02:14 +10:00
session_functions.php
SF Bug #2845904 - session.autostart breaks
2009-08-28 17:01:15 +10:00
ShadowAttribute.php
Remove CVS tags
2009-08-20 12:25:48 +10:00
syslog.php
Remove CVS tags
2009-08-20 12:25:48 +10:00
template_functions.php
Remove CVS tags
2009-08-20 12:25:48 +10:00
Template.php
SF Bug #3518548 - Missing attributes on some custom forms
2012-09-05 22:18:31 +10:00
TemplateRender.php
Revert #63 - Add attribute not rendering correctly
2019-04-20 15:39:48 +10:00
Tree.php
SF Patch #3391389 - Option to initially open the tree
2011-10-06 12:22:55 +11:00
TreeItem.php
SF Bug #3036033 - Error if CN begins with a % sign
2011-04-29 12:08:38 +10:00
Visitor.php
SF Patch #3391039 - Remove eval commands from PHP code
2011-10-06 11:43:40 +11:00
xml2array.php
Remove CVS tags
2009-08-20 12:25:48 +10:00
xmlTemplates.php
Add an alert when RFC3866 tags are being used
2011-10-06 16:16:27 +11:00