michael/webmin
1
0
Fork 0
mirror of https://github.com/webmin/webmin.git synced 2026-03-06 11:21:59 +00:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity
14,203 Commits 45 Branches 88 Tags
604c22513b4fd58a9324da170365df2ea8b93f4f
Commit Graph

44 Commits

Author SHA1 Message Date
Jamie Cameron
933aae1a9e If home directory contains /./ like in chroot mode, then replace with / 2020-02-03 10:47:13 -08:00
Ilia Rostovtsev
1c15d42fdc Fix html escape to quote escape for path 2019-12-05 22:18:00 +03:00
Jamie Cameron
b55b3fdd0a No need to escape path 2019-12-05 01:13:54 -08:00
Jamie Cameron
3b28c79e34 Deal with paths that are double-escaped or not 2019-12-04 14:34:56 -08:00
Jamie Cameron
c7f2733666 Merge branch 'master' of github.com:webmin/webmin 2019-12-04 07:20:40 -08:00
Jamie Cameron
68facdd18f Add missing urlize 2019-12-04 07:17:42 -08:00
Ilia Rostovtsev
9f09904749 Keep + in file/directory names 2019-12-03 16:25:12 +03:00
Ilia Rostovtsev
1f5600967f Convert path to its original content, as expected 
https://sourceforge.net/p/webadmin/discussion/600155/thread/abe25698b1/?limit=25#8d9e
 2019-08-20 12:55:40 +03:00
Ilia Rostovtsev
d3d1cc1737 Fix typo 2019-08-11 17:15:16 +03:00
Ilia Rostovtsev
2a0fe13317 Prevent reflected XSS by escaping path (coming from user) 2019-08-11 17:12:05 +03:00
Jamie Cameron
ef4213df55 Handle case where some paths are listed twice https://github.com/Real-Gecko/Filemin/issues/144 2019-06-30 16:04:46 -07:00
Ilia Rostovtsev
f82d4c3f53 Display error text message and not allowed directories in backticks 2019-04-20 12:31:25 +03:00
Ilia Rostovtsev
b46fcab007 Add data attr with link 
Prevent initial load issues, when returned data used from file-manager core.

https://github.com/authentic-theme/authentic-theme/issues/1300
 2019-02-18 14:08:46 +03:00
Jamie Cameron
ffb017565b Normalize allowed paths with a . in them https://www.virtualmin.com/node/60401 2019-01-16 19:38:55 -08:00
Jamie Cameron
625c922705 Merge pull request #890 from qooob/master 
Fix to respect vendor-specific (rar) MIME type #702
 2018-04-05 21:07:34 -07:00
Ilia Rostovtsev
39435df534 Fix to respect vendor-specific (rar) MIME type https://github.com/webmin/webmin/issues/702 2018-04-05 15:19:26 +03:00
Ilia Rostovtsev
622563bde0 Prevent elements with the same id 
In AJAX mode, the browser will always return same-id error.
 2018-03-12 15:23:08 +03:00
Jamie Cameron
12e8c0c362 Fix incorrect count of allowed paths https://github.com/Real-Gecko/Filemin/issues/87 2017-12-06 20:18:24 -08:00
Jamie Cameron
04c217c97a Prevent same allowed path being listed twice 2017-05-06 11:41:08 -07:00
Jamie Cameron
e787caf228 Fix path validation when saving files https://github.com/webmin/webmin/issues/548 2017-05-06 11:24:31 -07:00
Jamie Cameron
801a71d172 Merge pull request #344 from qooob/patch-30 
Respect module info
 2017-04-25 16:55:24 -07:00
Ilia Rostovtsev
2ff3afea6a path in bookmarks must be URI friendly 2017-04-16 09:37:49 +03:00
Jamie Cameron
d0b19dbb75 Fix more unescaped paths 2017-03-16 22:54:36 -07:00
Jamie Cameron
7fa58e88c1 Don't trust path elements 2017-03-15 23:22:47 -07:00
Jamie Cameron
c7a941c9af Fix bug where a sub-directory with the same name cannot be linked to 2017-03-10 19:05:07 -08:00
Jamie Cameron
dbd99caaee Path needs to be escaped in footer 2017-02-19 17:30:10 -08:00
Ilia Rostovtsev
81e89ae384 Make sure that new dropdown always visible 
To make sure it doesn't happen.
https://github.com/qooob/authentic-theme/issues/660
 2017-01-31 12:48:07 +03:00
Ilia Rostovtsev
917ff95a90 Unambiguous table header 2016-12-02 09:41:24 +03:00
Ilia Rostovtsev
ff0ba4822d SeLinux/attributes listing and control 2016-11-29 16:43:32 +03:00
Jamie Cameron
1c4afe2f11 Re-factor confdir setting 2d4640f00a 2016-06-28 18:01:28 -07:00
Jamie Cameron
8d6124321f remote_user_info is already set correctly https://sourceforge.net/p/webadmin/bugs/4773/ 2016-06-14 22:54:46 -07:00
Ilia Rostovtsev
ff2976fd85 Checking for dependencies to be able to extract .rpm/.deb 2016-06-09 14:44:16 +04:00
Ilia Rostovtsev
c273cf02f2 Respect module info 2016-05-11 13:58:40 +04:00
Ilia Rostovtsev
ba8b0e8972 In current state it will never properly print correct UTF8 lke value to check box 
As the result copy/paste and other operations will fail for Russian and other UTF8 like encodings.
 2016-05-10 00:33:55 +04:00
Ilia Rostovtsev
9f293451b9 To compliy with upcomming Authentic release 18.00 
Respecting language forms is nice.
 2016-05-08 18:46:59 +04:00
Ilia Rostovtsev
ae15622a57 For search page path could be printed twice in some cases 
This fix will prevent double printing of the path for searched (found) folders.

It doesn't happen always but only if search results contain same value for directory and file.

Can be reproduced by going to `/boot/grub` and searching for `grub`. With the current code the folder `grub` (same as the current folder) printed on the results with doubled path on the link and thus doesn't open correctly. The best is to tweak `search.cgi` that filters search results and remove from results same folder as parent. It's more complicated. My fix does it safely, I think.
 2016-05-05 23:12:24 +04:00
Ilia Rostovtsev
b5990ef9fb The rest of the code to support new extraction methods 
Just committed to `extract.cgi`. Command is checked for existence and if found extract button will appear on the interface in all themes.
 2016-05-04 18:01:51 +04:00
Ilia Rostovtsev
293d9e17ff Authentic dones't need init_datatables() 2016-05-01 12:52:02 +04:00
Ilia Rostovtsev
fd3f6c729f 9000+ is way to little for $pagelimit 2016-04-29 12:56:01 +04:00
Jamie Cameron
20862dca92 Don't treat dir as a regexp https://www.virtualmin.com/node/40452 2016-04-21 18:40:38 -07:00
Jamie Cameron
1cf382deab Don't die if a path cannot be utf-8 decoded 2016-03-06 10:22:28 -08:00
Jamie Cameron
a59cd42151 Re-fork filemin from 1.783 release 2016-02-22 20:06:44 -08:00
Jamie Cameron
9ed6338db6 Undo filemin fork 2016-02-22 20:05:11 -08:00
Jamie Cameron
f98e8e3398 Bring filemin as of the last webmin release across to our own repo 2016-02-21 15:36:17 -08:00